-
Notifications
You must be signed in to change notification settings - Fork 84
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Errors from certutil are not propagated #4736
Labels
CLI
CLI tools
lib389
Involves lib389 librabry
priority_high
need urgent fix / highly valuable / easy to fix
Milestone
Comments
Create a BZ RHDS |
Downstream bug: https://bugzilla.redhat.com/show_bug.cgi?id=1974226 |
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Aug 4, 2021
Description: Errors from certutil are not returned to the client, and only a generic failure code is returned. The actual error text should be returned to the client since it has meaning. Just catch all the exception and return the output as a ValueError. relates: 389ds#4736 Reviewed by: firstyear (Thanks!)
mreynolds389
added a commit
that referenced
this issue
Aug 4, 2021
Description: Errors from certutil are not returned to the client, and only a generic failure code is returned. The actual error text should be returned to the client since it has meaning. Just catch all the exception and return the output as a ValueError. relates: #4736 Reviewed by: firstyear (Thanks!)
mreynolds389
added a commit
that referenced
this issue
Aug 4, 2021
Description: Errors from certutil are not returned to the client, and only a generic failure code is returned. The actual error text should be returned to the client since it has meaning. Just catch all the exception and return the output as a ValueError. relates: #4736 Reviewed by: firstyear (Thanks!)
mreynolds389
added a commit
that referenced
this issue
Aug 4, 2021
Description: Errors from certutil are not returned to the client, and only a generic failure code is returned. The actual error text should be returned to the client since it has meaning. Just catch all the exception and return the output as a ValueError. relates: #4736 Reviewed by: firstyear (Thanks!)
Here 389-ds-base/src/lib389/lib389/nss_ssl.py Lines 198 to 200 in 33c8158
On the second call it asks for the password again, because it thinks it is a db upgrade. |
mreynolds389
added a commit
that referenced
this issue
Aug 10, 2021
Description: A regression in the previous commit accidentally called certutil twice which triggered the CLI to prompt for the NSS database password. This broke CI tests, etc. relates: #4736 Reviewed by: mreynolds (one line commit rule)
mreynolds389
added a commit
that referenced
this issue
Aug 10, 2021
Description: A regression in the previous commit accidentally called certutil twice which triggered the CLI to prompt for the NSS database password. This broke CI tests, etc. relates: #4736 Reviewed by: mreynolds (one line commit rule)
mreynolds389
added a commit
that referenced
this issue
Aug 10, 2021
Description: A regression in the previous commit accidentally called certutil twice which triggered the CLI to prompt for the NSS database password. This broke CI tests, etc. relates: #4736 Reviewed by: mreynolds (one line commit rule)
mreynolds389
added a commit
that referenced
this issue
Aug 10, 2021
Description: A regression in the previous commit accidentally called certutil twice which triggered the CLI to prompt for the NSS database password. This broke CI tests, etc. relates: #4736 Reviewed by: mreynolds (one line commit rule)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
CLI
CLI tools
lib389
Involves lib389 librabry
priority_high
need urgent fix / highly valuable / easy to fix
Issue Description
When an error occurs with
certutil
, stderr output from it is not printed:It just states that the exit status is 255, but no
certutil
output, which in this case isIn
lib389/nss_ssl.py
we have many places with statements like this that show this behaviour:Package Version and Platform:
Steps to Reproduce
Steps to reproduce the behavior:
dsctl localhost tls generate-server-cert-csr -s "bad"
Expected results
Instead of a python traceback, a clear error message should be printed.
The text was updated successfully, but these errors were encountered: