mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2025-01-26 16:16:31 -06:00
3b1a56f588
When a master key is missing from the local HSM, ipa-ods-exporter crashes. This can happen when the DNSSEC master role is moved from one node to another with the following scenario: - install server1 with dns + dnssec - install server2 without dns - disable dnssec from server1 - install dns + dnssec on server2 With the above scenario, server2 never had the opportunity to get the master key (this happens only when the replica is already configured as DNS server and has put its public replica key in LDAP + the current DNSSEC master wraps its master key with the replica key). ipa-ods-exporter can only log an error instead of crashing. Related: https://pagure.io/freeipa/issue/8654 Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com> |
||
|---|---|---|
| .. | ||
| dnssec | ||
| ipa-kdb | ||
| ipa-otpd | ||
| ipa-sam | ||
| ipa-slapi-plugins | ||
| ipa-version.h.in | ||
| Makefile.am | ||