On Mon, Jun 30, 2025 at 09:56:32AM +0200, Theo Buehler wrote:
> Here's a replacement for x509_get_aia(). This is quite similar to the
> SIA handling we already have in cert.c - I have tried to deduplicate
> the SIA and AIA handlers, but it's not entirely trivial to do this
> nicely, so I left it straightforward and dumb.
> 
> Our x509_get_aia() is slightly incorrect in that it only accepts a
> single accessMethod. cert_aia() fixes this and like cert_sia() it will
> use the first rsync method it encounter;. Of course, this will only
> really be fixed once I remove x509_get_aia() later.
> 
> I haven't hooked this into cert_parse_ee_cert() yet since that will
> happen for free after a few more steps.

OK job@