freeipa

Clone
Source Code
GIT

#5520 named-pkcs11 failed to start due wrong file permissions
Closed: Fixed None Opened 8 years ago by mbasti.

Closed: Fixed
Reopen Issue

With umask set to 077 named is unable to start due wrong permission on directory/files:

Workaround:

 chmod 770 /var/lib/ipa/dnssec
 chmod 644 /etc/ipa/dnssec/softhsm2.conf

File mods must be explicitly modified by os.chmod() to have effect over umask.

This may not be all affected files.

Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1289311 (Red Hat Enterprise Linux 7)

It should be

 chmod 644 /etc/ipa/dnssec/softhsm2.conf

master:

  • 5e2cd38 DNS: fix file permissions
  • 4272ba4 Explicitly call chmod on newly created directories

Needs triage, if it should be backported to ipa 4.2

yes, it should be backported to 4.2.4

ipa-4-2:

  • d910de8 DNS: fix file permissions
  • 5c2dbcc Explicitly call chmod on newly created directories

Fix:

master:

  • 403652b Fix: replace mkdir with chmod

ipa-4-3:

  • f3a8ef0 Fix: replace mkdir with chmod

ipa-4-2:

  • 066ecf4 Fix: replace mkdir with chmod

Metadata Update from @mbasti:
- Issue assigned to mbasti
- Issue set to the milestone: FreeIPA 4.2.4
7 years ago

Login to comment on this ticket.

Metadata
None
None
None
important
None
None
None
None
defect
None
None
DNS
None
1
None
None
None
None
https://bugzilla.redhat.com/show_bug.cgi?id=1289311
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.