summaryrefslogtreecommitdiffstats
path: root/ipaserver/install/httpinstance.py
diff options
context:
space:
mode:
authorMartin Babinsky <mbabinsk@redhat.com>2016-09-23 15:56:46 +0200
committerMartin Babinsky <mbabinsk@redhat.com>2016-10-03 13:42:34 +0200
commitee96384c3ed5d93c8042e05461253e0c2ed5f721 (patch)
tree8bc833b11da59d88d94c0a5f26ff7e2d5469eb06 /ipaserver/install/httpinstance.py
parent4d994bee60560438178ad9f0215f611ca60e32c3 (diff)
downloadfreeipa-ee96384c3ed5d93c8042e05461253e0c2ed5f721.tar.gz
freeipa-ee96384c3ed5d93c8042e05461253e0c2ed5f721.tar.xz
freeipa-ee96384c3ed5d93c8042e05461253e0c2ed5f721.zip
mod_nss: use more robust quoting of NSSNickname directive
The code which handles configuration of mod_nss module must be more robust when handling NSS nicknames generated from subject names containing quoted RDN values. https://fedorahosted.org/freeipa/ticket/5809 Reviewed-By: Tomas Krizek <tkrizek@redhat.com>
Diffstat (limited to 'ipaserver/install/httpinstance.py')
-rw-r--r--ipaserver/install/httpinstance.py3
1 files changed, 2 insertions, 1 deletions
diff --git a/ipaserver/install/httpinstance.py b/ipaserver/install/httpinstance.py
index 00f890175..7914f4ccf 100644
--- a/ipaserver/install/httpinstance.py
+++ b/ipaserver/install/httpinstance.py
@@ -263,7 +263,8 @@ class HTTPInstance(service.Service):
print("Updating port in %s failed." % paths.HTTPD_NSS_CONF)
def __set_mod_nss_nickname(self, nickname):
- installutils.set_directive(paths.HTTPD_NSS_CONF, 'NSSNickname', nickname)
+ installutils.set_directive(
+ paths.HTTPD_NSS_CONF, 'NSSNickname', nickname, quote_char="'")
def set_mod_nss_protocol(self):
installutils.set_directive(paths.HTTPD_NSS_CONF, 'NSSProtocol', 'TLSv1.0,TLSv1.1,TLSv1.2', False)
generated by cgit (git 2.34.1) at 2024-10-01 04:43:18 +0000