IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

fix-opendnssec-setup.diff: Opendnssec 2.0.x broke DNSSEC setup, fix it.

Browse Source
This commit is contained in:
Timo Aaltonen
2017-05-17 21:18:16 +03:00
parent e7a25afffc
commit ffe4080f73
3 changed files with 47 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
debian/changelog vendored
View File

@@ -16,6 +16,8 @@ freeipa (4.4.4-1) UNRELEASED; urgency=medium
uninstall works.
* fix-pkcs11-helper.diff: Fix ipa-dnskeysyncd setup which was broken
by softhsm 2.2.
* fix-opendnssec-setup.diff: Opendnssec 2.0.x broke DNSSEC setup, fix
it.
-- Timo Aaltonen <tjaalton@debian.org> Fri, 17 Feb 2017 01:40:15 +0200

44
debian/patches/fix-opendnssec-setup.diff vendored Normal file
View File

@@ -0,0 +1,44 @@
Description: Fix ODS setup with 2.0.x
--- a/install/share/opendnssec_conf.template
+++ b/install/share/opendnssec_conf.template
@@ -8,7 +8,6 @@
<Module>$SOFTHSM_LIB</Module>
<TokenLabel>$TOKEN_LABEL</TokenLabel>
<PIN>$PIN</PIN>
- <AllowExtraction/>
</Repository>
</RepositoryList>
--- a/ipaserver/install/opendnssecinstance.py
+++ b/ipaserver/install/opendnssecinstance.py
@@ -304,7 +304,7 @@ class OpenDNSSECInstance(service.Service
else:
# initialize new kasp.db
command = [
- paths.ODS_KSMUTIL,
+ '/usr/sbin/ods-enforcer-db-setup',
'setup'
]
--- a/ipaplatform/base/paths.py
+++ b/ipaplatform/base/paths.py
@@ -171,7 +171,7 @@ class BasePathNamespace(object):
NET = "/usr/bin/net"
BIN_NISDOMAINNAME = "/usr/bin/nisdomainname"
NSUPDATE = "/usr/bin/nsupdate"
- ODS_KSMUTIL = "/usr/bin/ods-ksmutil"
+ ODS_KSMUTIL = "/usr/bin/ods-enforcer"
ODS_SIGNER = "/usr/sbin/ods-signer"
OPENSSL = "/usr/bin/openssl"
PK12UTIL = "/usr/bin/pk12util"
--- a/ipapython/dnssec/odsmgr.py
+++ b/ipapython/dnssec/odsmgr.py
@@ -125,7 +125,7 @@ class ODSMgr(object):
Raises CalledProcessError if returncode != 0.
"""
- cmd = ['ods-ksmutil'] + params
+ cmd = ['ods-enforcer'] + params
result = ipautil.run(cmd, capture_output=True)
return result.output

1
debian/patches/series vendored
View File

@@ -21,3 +21,4 @@ purge-firefox-extension.diff
fix-ipa-otpd-service.diff
fix-is-running.diff
fix-kdcproxy-path.diff
fix-opendnssec-setup.diff