pki.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Fraser Tweedale <ftweedal@redhat.com>	2016-05-30 12:17:12 +1000
committer	Fraser Tweedale <ftweedal@redhat.com>	2016-05-30 12:17:12 +1000
commit	a40139d5f21139d31b62d3c35002b454131245f1 (patch)
tree	0ca5584503c08f9e9247916c5a79b470fedf284b /base/server/python
parent	2c73f1c2721021755d5753f07fa059a018ae9d7f (diff)
download	pki-a40139d5f21139d31b62d3c35002b454131245f1.tar.gz pki-a40139d5f21139d31b62d3c35002b454131245f1.tar.xz pki-a40139d5f21139d31b62d3c35002b454131245f1.zip

Fix LDAP schema violation when instance name contains '_'

The instance name is used in NSSDB key nicknames, which are stored in the authorityKeyNickname attribute for mapping lightweight CAs to their keys. The schema was PrintableString, which does not permit '_', causing LDAP syntax errors if the instance name contains '_'. To avoid this issue, change the attribute syntax to IA5String. Existing instances should be largely unaffected. The schema update can be successfully applied even for existing attributes, because PrintableString and IA5String share the same underlying representation in 389DS. Fixes: https://fedorahosted.org/pki/ticket/2343

Diffstat (limited to 'base/server/python')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: