Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 8): Bug 1926910
Description of problem: ipa cert-remove-hold <invalid_cert_id> returns an incorrect error message Version-Release number of selected component (if applicable): ipa-server-4.9.1-1.module+el8.4.0+9665+c9815399.x86_64 pki-base-10.10.3-1.module+el8.4.0+9456+88377f87.noarch How reproducible: Always Steps to Reproduce: 1. run `ipa cert-remove-hold 9999` or `ipa cert-remove-hold <invalid_cert_id>` 2. 3. Actual results: ipa: ERROR: Certificate operation cannot be completed: Unable to communicate with CMS (404) is returned Expected results: Earlier the same command used to return : ipa: ERROR: Certificate operation cannot be completed: EXCEPTION (Certificate serial number) or CertNotFoundException: Certificate ID 0x270f not found should be returned Additional info: The pki equivalent command returns the correct error message [root@ci-vm-10-0-139-78 ~]# pki cert-release-hold 9999 WARNING: pki cert has been deprecated. Use pki ca-cert instead. WARNING: BAD_CERT_DOMAIN encountered on 'CN=server.testrealm.test,OU=pki-tomcat,O=testrealm.test Security Domain' indicates a common-name mismatch CertNotFoundException: Certificate ID 0x270f not found [root@ci-vm-10-0-139-78 ~]# rpm -q pki-ca pki-ca-10.10.3-1.module+el8.4.0+9456+88377f87.noarch [root@ci-vm-10-0-139-78 ~]#
Metadata Update from @frenaud: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1926910
Metadata Update from @frenaud: - Issue assigned to frenaud
Metadata Update from @frenaud: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/5541
master:
ipa-4-9:
Metadata Update from @abbra: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.