[Freeipa-devel] [freeipa PR#679][edited] Make sure remote hosts have our keys
tiran
freeipa-github-notification at redhat.com
Thu Apr 20 14:12:08 UTC 2017
URL: https://github.com/freeipa/freeipa/pull/679
Author: simo5
Title: #679: Make sure remote hosts have our keys
Action: edited
Changed field: body
Original value:
"""
In complex replication setups a replica may try to obtain CA keys from a
host that is not the master we initially create the keys against.
In this case race conditions may happen due to replication. So we need
to make sure the server we are contacting to get the CA keys has our
keys in LDAP. We do this by waiting to positively fetch our encryption
public key (the last one we create) from the target host LDAP server.
Fixes: https://pagure.io/freeipa/issue/6688
Signed-off-by: Simo Sorce <simo at redhat.com>
"""
More information about the Freeipa-devel
mailing list