ClearOS Bug Tracker


View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0020811ClearOSapp-openldap - OpenLDAP Driverpublic2018-07-18 09:392018-10-30 14:27
Reporterpbaldwin 
Assigned To 
PrioritynormalSeveritytweakReproducibilityhave not tried
StatusconfirmedResolutionopen 
PlatformOSOS Version
Product Version7.5.0 
Target Version7.6.0Fixed in Version 
Summary0020811: Fix OpenLDAP certificate issue
DescriptionThe bootstrap certificates can be mismatched in some cases. Here's the problematic bit of code:

KEY_SOURCE=/etc/pki/CA/bootstrap.key
KEY=/etc/openldap/cacerts/key.pem

if [ ! -s "$KEY" ]; then
    logger -p local6.notice -t installer "app-openldap-core - prepping server key"
    cp $KEY_SOURCE $KEY
    chown root.ldap $KEY
    chmod 640 $KEY
fi

CRT_SOURCE=/etc/pki/CA/bootstrap.crt
CRT=/etc/openldap/cacerts/cert.pem

if [ ! -s "$CRT" ]; then
    logger -p local6.notice -t installer "app-openldap-core - prepping server certificate"
    cp $CRT_SOURCE $CRT
    chown root.ldap $CRT
    chmod 640 $CRT
fi


The key/pair should always be copied at the same time.

TagsNo tags attached.
Attached Files

- Relationships
related to 0021141closedpbaldwin Create common tool to deploy certificates 

-  Notes
There are no notes attached to this issue.

- Issue History
Date Modified Username Field Change
2018-07-18 09:39 pbaldwin New Issue
2018-07-18 09:39 pbaldwin Status new => confirmed
2018-08-14 14:42 pbaldwin Summary Add workaround for OpenLDAP certificate issue => Fix OpenLDAP certificate issue
2018-08-14 14:42 pbaldwin Description Updated View Revisions
2018-08-14 14:42 pbaldwin Relationship added related to 0021141
2018-10-30 14:27 pbaldwin Target Version 7.5.0 Updates => 7.6.0