IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-25 16:31:08 -06:00
Code Issues Packages Projects Releases Wiki Activity
1f0ca6aafd
freeipa/ipaserver/secrets
History
Florence Blanc-Renaud 8983ce53e3 ipa-kra-install: fix check_host_keys 
ipa-kra-install on a replica checks that the keys are available before
going further to avoid race condition due to replication. The issue is
that the check_host_keys method expects to find exactly one key for
cn=env/host but 2 may exist: one below cn=custodia and one below
cn=dogtag,cn=custodia.
The fix is to check that at least one key exist (not exactly one key).

https://pagure.io/freeipa/issue/6934

Reviewed-By: Martin Basti <mbasti@redhat.com>
2017-05-09 14:28:13 +02:00
..
__init__.py ipapython: move dnssec, p11helper and secrets to ipaserver 2016-11-29 14:50:51 +01:00
client.py added ssl verification using IPA trust anchor 2017-02-27 07:53:05 +00:00
common.py py3: custodia: basedn must be unicode 2017-02-10 14:03:04 +01:00
kem.py ipa-kra-install: fix check_host_keys 2017-05-09 14:28:13 +02:00
service.py Use Custodia 0.3.1 features 2017-03-28 15:02:06 +02:00
store.py Fix replica with --setup-ca issues 2017-03-01 13:39:44 +00:00