Bug 500738
Summary: | (nethsm2k) : KRA : installation wizard fails | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Product: | [Retired] Dogtag Certificate System | Reporter: | Chandrasekar Kannan <ckannan> | ||||||||
Component: | DRM | Assignee: | Christina Fu <cfu> | ||||||||
Status: | CLOSED ERRATA | QA Contact: | Chandrasekar Kannan <ckannan> | ||||||||
Severity: | urgent | Docs Contact: | |||||||||
Priority: | urgent | ||||||||||
Version: | unspecified | CC: | alee, benl, mharmsen | ||||||||
Target Milestone: | --- | ||||||||||
Target Release: | --- | ||||||||||
Hardware: | All | ||||||||||
OS: | Linux | ||||||||||
Whiteboard: | |||||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||||
Doc Text: | Story Points: | --- | |||||||||
Clone Of: | Environment: | ||||||||||
Last Closed: | 2009-07-22 23:35:17 UTC | Type: | --- | ||||||||
Regression: | --- | Mount Type: | --- | ||||||||
Documentation: | --- | CRM: | |||||||||
Verified Versions: | Category: | --- | |||||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||||
Embargoed: | |||||||||||
Bug Depends On: | |||||||||||
Bug Blocks: | 443788 | ||||||||||
Attachments: |
|
Description
Chandrasekar Kannan
2009-05-13 21:04:01 UTC
update - this problem doesn't happen on a machine that has no nethsm installed. so something to do with the way we work with nethsm. *** Bug 500756 has been marked as a duplicate of this bug. *** Created attachment 346100 [details]
solution for working around some underlying issue with jss and hsm
Created attachment 346273 [details]
added a helpful debug message
Attachment (id=346273) +jmagne. [cfu@jaw common]$ svn commit Sending common/src/com/netscape/cms/servlet/csadmin/CertRequestPanel.java Sending common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java Transmitting file data ..pwd Committed revision 539. [cfu@jaw common]$ pwd /home/cfu/dogtag/hsm4/pki/base/common Created attachment 346308 [details]
spec file change
Verified with today's build [root@sigma ~]# rpm -qi pki-common Name : pki-common Relocations: (not relocatable) Version : 8.0.0 Vendor: Red Hat, Inc. Release : 12.beta Build Date: Thu 04 Jun 2009 01:49:42 AM PDT Install Date: Thu 04 Jun 2009 01:36:03 PM PDT Build Host: payday.dsdev.sjc.redhat.com Group : System Environment/Base Source RPM: pki-common-8.0.0-12.beta.src.rpm Size : 2780418 License: GPLv2 with exceptions Signature : (none) Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> URL : http://www.redhat.com/certificate_system Summary : Red Hat Certificate System - PKI Common Framework Description : Red Hat Certificate System is an enterprise software system designed to manage enterprise Public Key Infrastructure (PKI) deployments. The Red Hat PKI Common Framework is required by the following four Red Hat PKI subsystems: the Red Hat Certificate Authority, the Red Hat Data Recovery Manager, the Red Hat Online Certificate Status Protocol Manager, and the Red Hat Token Key Service. [root@sigma ~]# certutil -L -d /var/lib/pki-kra/alias -h nethsm2k Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Enter Password or Pin for "nethsm2k": nethsm2k:subsystemCert cert-pki-kra u,u,u nethsm2k:auditSigningCert cert-pki-ca u,u,u nethsm2k:ocspSigningCert cert-pki-ca u,u,u nethsm2k:transportCert cert-pki-kra u,u,u nethsm2k:auditSigningCert cert-pki-tks u,u,u nethsm2k:Server-Cert cert-pki-ra u,u,u nethsm2k:subsystemCert cert-pki-ocsp u,u,u nethsm2k:auditSigningCert cert-pki-kra u,u,u nethsm2k:auditSigningCert cert-pki-tps u,u,u nethsm2k:subsystemCert cert-pki-ca u,u,u nethsm2k:auditSigningCert cert-pki-ocsp u,u,u nethsm2k:Server-Cert cert-pki-ca u,u,u nethsm2k:Server-Cert cert-pki-tps u,u,u nethsm2k:subsystemCert cert-pki-tks u,u,u nethsm2k:caSigningCert cert-pki-ca CTu,cu,u nethsm2k:subsystemCert cert-pki-tps u,u,u nethsm2k:Server-Cert cert-pki-ocsp u,u,u nethsm2k:Server-Cert cert-pki-tks u,u,u nethsm2k:ocspSigningCert cert-pki-ocsp u,u,u nethsm2k:storageCert cert-pki-kra u,u,u nethsm2k:Server-Cert cert-pki-kra u,u,u nethsm2k:subsystemCert cert-pki-ra u,u,u [root@sigma ~]# |