#7151 ipa-server-upgrade performs unneeded steps to stop tracking/start tracking certs
Closed: fixed 2 years ago Opened 2 years ago by frenaud.

ipa-server-upgrade always reconfigures certmonger to track PKI, DS, HTTP certs, even if certmonger configuration is already OK.

The code looks for existing certmonger tracking requests and compares them with the expected ones. The issue is that the criteria for the search are wrong. Because of that, it assumes that certmonger is not tracking the certs wiith the right options, stops tracking, reconfigures the helpers, starts tracking.


Metadata Update from @frenaud:
- Issue assigned to frenaud

2 years ago

Metadata Update from @frenaud:
- Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/1079

2 years ago

Metadata Update from @pvoborni:
- Issue set to the milestone: FreeIPA 4.6.2

2 years ago

master:

  • 73b2097 ipa-server-upgrade: fix the logic for tracking certs
  • d87163c ipa-server-upgrade: do not add untracked certs to the request list

ipa-4-6:

  • b70e1f5 ipa-server-upgrade: fix the logic for tracking certs
  • ef6aa67 ipa-server-upgrade: do not add untracked certs to the request list

Metadata Update from @frenaud:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

2 years ago

Login to comment on this ticket.

Metadata