Revoked Certificates are Returned in Search Results in Red Hat Certificate Server 8.0 When They Should Be Filtered Out
Environment
- Red Hat Certificate System 8.0
Issue
- Revoked certificates are returned in the /listCerts search when "Do not show certificates that have been revoked" checkbox has been checked.
Resolution
- The fix to this issue is currently available in Red Hat Certificate Server 8.1.
- This issue was fixed via BZ 707607, which was incorporated into pki-common 8.1.1-1.el5pki
Root Cause
- There was a change made to PublisherProcessor.java to resolve the issue.
Diagnostic Steps
- Run a search of all certificates with the "do not include revoked certificates" checkbox selected.
- Expected Result:
- Only active certificates are returned in the search results
- Actual Result:
- Revoked certificates are returned along with active certificates in the search results.
This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.
Comments