Bug 1145846
Summary: | 389-ds 1.3.3.0 does not adjust cipher suite configuration on upgrade, breaks itself and pki-server: "Cipher suite fortezza is not available in NSS 3.17" , "Cannot communicate securely with peer: no common encryption algorithm(s)." | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Noriko Hosoi <nhosoi> |
Component: | 389-ds-base | Assignee: | Noriko Hosoi <nhosoi> |
Status: | CLOSED ERRATA | QA Contact: | Viktor Ashirov <vashirov> |
Severity: | high | Docs Contact: | |
Priority: | high | ||
Version: | 7.1 | CC: | amessina, amsharma, awilliam, edewata, extras-qa, jgalipea, jpazdziora, mreynolds, nhosoi, nkinder, rmeggins |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | 389-ds-base-1.3.3.1-4.el7 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | 1139954 | Environment: | |
Last Closed: | 2015-03-05 09:36:51 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1139954 | ||
Bug Blocks: |
Description
Noriko Hosoi
2014-09-24 01:02:50 UTC
Its already automated in SSL startup tests. If SSL startup tests passes, we can mark the bug as Verified. SSL startup tests passed as per the acceptance test reports for 389-ds-base-1.3.3.1-6. nsslapd-listen-backlog-size: 128 nsslapd-dynamic-plugins: off nsslapd-cn-uses-dn-syntax-in-dns: off nsslapd-malloc-mxfast: -10 nsslapd-malloc-trim-threshold: -10 nsslapd-malloc-mmap-threshold: -10 nsslapd-ignore-time-skew: off passwordStorageScheme: SSHA nsslapd-rootpwstoragescheme: SSHA nsslapd-errorlog-list: nsslapd-auditlog-list: nsslapd-ssl-check-hostname: on nsslapd-hash-filters: off TestCase [startup] result-> [PASS] Hence, marking the bug as Verified. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHSA-2015-0416.html |