Now that the key/cert dbs are in their own instance specific directory, we don't need the name prefix anymore, so we should just get rid of it. We have the certdir in the config now - all we really need to do is make sure it exists and is writable.
Created attachment 146728 [details] diffs
Looks good.
Reviewed by: nhosoi (Thanks!) Files: see diff Branch: HEAD Fix Description: Now that we have everything in its own instance specific directory, we do not need the troublesome key/cert database prefix. This simplifies the slapd_nss_init code a great deal. Platforms tested: RHEL4 Flag Day: no Doc impact: YES - A couple of the pages on the wiki talk about slapd-instance-cert8.db and so on - these pages will have to change once FDS 1.1 is released Checking in ldapserver/ldap/servers/slapd/ssl.c; /cvs/dirsec/ldapserver/ldap/servers/slapd/ssl.c,v <-- ssl.c new revision: 1.12; previous revision: 1.11 done
Verified. [root@babylon1 snmp]# bash sortrpmsbydate.bash | grep redhat-ds 1196464299 redhat-ds-base-8.0.0-11.el5dsrv Fri Nov 30 2007 1196464319 redhat-ds-admin-8.0.0-1.15.el5dsrv Fri Nov 30 2007 1196464343 redhat-ds-console-8.0.0-8.el5dsrv Fri Nov 30 2007 [root@babylon1 slapd-babylon1]# ls cert8.db dse.ldif dse.ldif.startOK key3.db secmod.db certmap.conf dse.ldif.bak dse_original.ldif schema slapd-collations.conf [root@babylon1 slapd-babylon1]# pwd /etc/dirsrv/slapd-babylon1 [root@babylon1 slapd-babylon1]#