ipa cert-show NN --chain --certificate-out=somefile.pem fails with an internal error when the cert is a sub-ca cert
ipa: ERROR: non-public: Error: Incorrect padding Traceback (most recent call last): File "/usr/lib/python3.6/site-packages/ipalib/backend.py", line 141, in execute return self.Command[_name](*args, **options) File "/usr/lib/python3.6/site-packages/ipalib/frontend.py", line 450, in __call__ return self.__do_call(*args, **options) File "/usr/lib/python3.6/site-packages/ipalib/frontend.py", line 478, in __do_call ret = self.run(*args, **options) File "/usr/lib/python3.6/site-packages/ipalib/frontend.py", line 801, in run return self.forward(*args, **options) File "/usr/lib/python3.6/site-packages/ipaclient/plugins/cert.py", line 181, in forward return super(cert_show, self).forward(*args, **options) File "/usr/lib/python3.6/site-packages/ipaclient/plugins/cert.py", line 70, in forward x509.write_certificate_list(certs, certificate_out) File "/usr/lib/python3.6/site-packages/ipalib/x509.py", line 568, in write_certificate_list for cert in certs: File "/usr/lib/python3.6/site-packages/ipaclient/plugins/cert.py", line 69, in <genexpr> for cert in certs) File "/usr/lib64/python3.6/base64.py", line 87, in b64decode return binascii.a2b_base64(s)
I expect a certificate chain in pem encoded format.
freeipa-client-4.7.0-1.fc28.x86_64
Metadata Update from @ftweedal: - Issue assigned to ftweedal
PR: https://github.com/freeipa/freeipa/pull/2402
Metadata Update from @ftweedal: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/2402
Metadata Update from @cheimes: - Issue set to the milestone: FreeIPA 4.6.5
Related PR https://pagure.io/freeipa/issue/7628 landed in 4.6 and 4.7
Metadata Update from @cheimes: - Issue set to the milestone: None (was: FreeIPA 4.6.5)
master:
ipa-4-7:
ipa-4-6:
Metadata Update from @cheimes: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Metadata Update from @frenaud: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1700990
Issue linked to Bugzilla: Bug 1700990
Login to comment on this ticket.