Bug 455064

Summary: Move the self-signed CA serialno file
Product: [Retired] freeIPA Reporter: Rob Crittenden <rcritten>
Component: ipa-serverAssignee: Rob Crittenden <rcritten>
Status: CLOSED ERRATA QA Contact: Chandrasekar Kannan <ckannan>
Severity: low Docs Contact:
Priority: low    
Version: 1.0CC: benl, jgalipea, ssorce
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: freeipa-2.0.0-1.fc15 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 453489    
Attachments:
Description Flags
move the serialno file none

Description Rob Crittenden 2008-07-11 19:16:52 UTC 
Description of problem:

The file /usr/share/ipa/serialno contains the last issued serial number of the
self-signed CA.

Since this file can change at runtime it should instead be in /var/lib/ipa.

This file is not controlled by rpm so we can handle moving it in an rpm %post
Comment 1 Rob Crittenden 2008-07-24 18:45:05 UTC 
Created attachment 312586 [details]
move the serialno file
Comment 2 Rob Crittenden 2008-07-25 13:14:07 UTC 
master: a19d27717aef5089d35f589be7726e5627d1469b
Comment 3 Jenny Severance 2008-11-25 13:44:04 UTC 
Fix verified:

[root@jennyv3 /]# ls /var/lib/ipa
ca_serialno  sysrestore

[root@jennyv3 /]# more /var/lib/ipa/ca_serialno 
1003