Bug 440344
| Summary: | Installation page should tell admins to use "service", not "/etc/init.d" on Linux | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Product: | [Retired] Dogtag Certificate System | Reporter: | Bob Lord <blord> | ||||||||||
| Component: | Installation Wizard | Assignee: | Matthew Harmsen <mharmsen> | ||||||||||
| Status: | CLOSED ERRATA | QA Contact: | Chandrasekar Kannan <ckannan> | ||||||||||
| Severity: | low | Docs Contact: | |||||||||||
| Priority: | high | ||||||||||||
| Version: | unspecified | CC: | awnuk, benl, jgalipea, mharmsen | ||||||||||
| Target Milestone: | --- | ||||||||||||
| Target Release: | --- | ||||||||||||
| Hardware: | All | ||||||||||||
| OS: | Linux | ||||||||||||
| Whiteboard: | |||||||||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||||||||
| Doc Text: | Story Points: | --- | |||||||||||
| Clone Of: | Environment: | ||||||||||||
| Last Closed: | 2009-07-22 23:28:07 UTC | Type: | --- | ||||||||||
| Regression: | --- | Mount Type: | --- | ||||||||||
| Documentation: | --- | CRM: | |||||||||||
| Verified Versions: | Category: | --- | |||||||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||||||
| Embargoed: | |||||||||||||
| Bug Depends On: | |||||||||||||
| Bug Blocks: | 443788 | ||||||||||||
| Attachments: |
|
||||||||||||
|
Description
Bob Lord
2008-04-02 23:12:10 UTC
Before this gets changed, we must be sure that "service" exists on Solaris as well. Actually, the change will be to fix the velocity template to encode the proper command. Raising priority of this for the following reason: Since the introduction of "SELinux", it is no longer possible to perform a command-line start of Apache modules (e. g. - TPS & RA) if the user attempts to execute these from a non-root directory. For example: cd /home/larry (running as root) /etc/init.d/pki-tps restart Stopping pki-tps: [ OK ] Starting pki-tps: [FAILED] The log states that the process was unable to change to the "/home/larry" directory at the end, and therefore, the process did not start. However, performing the following succeeds: cd /home/larry (running as root) /sbin/service pki-tps restart Stopping pki-tps: [ OK ] Starting pki-tps: [ OK ] PKI service(s) are available at https://glyph.dsdev.sjc.redhat.com:7889 NOTE: "cd /etc/init.d" first prior to running this command will succeed because "/etc/init.d" is owned by root. Since "service" does not exist on Solaris 9, the velocity templates will need to be "changeable" programmatically. Created attachment 333917 [details]
pki/base changes
Created attachment 333919 [details]
pki/dogtag changes
attachment (id=333917) attachment (id=333919) + awnuk % svn status | grep -v ^$ | grep -v ^P | grep -v ^X | grep -v ^? M dogtag/tps-ui/shared/docroot/tps/admin/console/config/donepanel.vm M dogtag/common-ui/shared/admin/console/config/donepanel.vm M dogtag/ra-ui/shared/docroot/ra/admin/console/config/donepanel.vm M base/common/src/com/netscape/cms/servlet/csadmin/DonePanel.java M base/setup/pkicreate M base/ra/lib/perl/PKI/RA/DonePanel.pm M base/tps/lib/perl/PKI/TPS/DonePanel.pm %svn commit Sending base/common/src/com/netscape/cms/servlet/csadmin/DonePanel.java Sending base/ra/lib/perl/PKI/RA/DonePanel.pm Sending base/setup/pkicreate Sending base/tps/lib/perl/PKI/TPS/DonePanel.pm Sending dogtag/common-ui/shared/admin/console/config/donepanel.vm Sending dogtag/ra-ui/shared/docroot/ra/admin/console/config/donepanel.vm Sending dogtag/tps-ui/shared/docroot/tps/admin/console/config/donepanel.vm Transmitting file data ....... Committed revision 270. FYI:
When not run as 'root', the following messages appear:
/sbin/service pki-ca restart
pki-ca: unrecognized service
/etc/init.d/pki-ca restart
bash: /etc/init.d/pki-ca: Permission denied
The old-style "/etc/init.d/<instance>" name was clear about the problem,
while the new "/sbin/service" is unclear. Therefore, the "DonePanel" of
each subsystem was further enhanced with the following text:
"As 'root', restart the server on the command line . . ."
Created attachment 334025 [details]
pkiremove diffs
Created attachment 334026 [details]
dogtag spec files
attachment (id=334025) attachment (id=334026) +awnuk % svn status | grep -v ^$ | grep -v ^P | grep -v ^X | grep -v ^? M dogtag/tps-ui/dogtag-pki-tps-ui.spec M dogtag/common/pki-common.spec M dogtag/setup/pki-setup.spec M dogtag/ra/pki-ra.spec M dogtag/common-ui/dogtag-pki-common-ui.spec M dogtag/tps/pki-tps.spec M dogtag/ra-ui/dogtag-pki-ra-ui.spec M base/setup/pkiremove % svn commit Sending base/setup/pkiremove Sending dogtag/common/pki-common.spec Sending dogtag/common-ui/dogtag-pki-common-ui.spec Sending dogtag/ra/pki-ra.spec Sending dogtag/ra-ui/dogtag-pki-ra-ui.spec Sending dogtag/setup/pki-setup.spec Sending dogtag/tps/pki-tps.spec Sending dogtag/tps-ui/dogtag-pki-tps-ui.spec Transmitting file data ........ Committed revision 274. Verified. After configuration of all subsystems: /sbin/service pki-ca restart /sbin/service pki-ra restart /sbin/service pki-tks restart /sbin/service pki-tps restart /sbin/service pki-ocsp restart /sbin/service pki-kra restart |