...
Extract the custom certificates from the backup that was automatically created during the upgrade:
Code Block tar xvf /installs/backups/.../system-backup.tar.gz etc/httpd/conf/certs/custom_cer.pem etc/httpd/conf/certs/custom_key.pem etc/httpd/conf/certs/custom_key_passphrase.sh
Copy the files
custom_cer.pem,custom_key.pemandcustom_key_passphrase.sh(if exists) to/etc/httpd/conf/certs.Execute the following commands:
Code Block sudo touch /tmp/sudo.tmp SSL_CERT_FILE="/etc/httpd/conf/certs/custom_cer.pem" [[ -f "${SSL_CERT_FILE}" ]] && sudo /app/utils/yq e -i ".httpd.httpdSslCertFile = \"${SSL_CERT_FILE}\"" /app/config/config.yaml && sudo sed -i "s#^SSLCertificateFile .*#SSLCertificateFile \"${SSL_CERT_FILE}\"#g" /etc/httpd/conf/httpd.conf SSL_CERT_KEY_FILE="/etc/httpd/conf/certs/custom_key.pem" [[ -f "${SSL_CERT_KEY_FILE}" ]] && sudo /app/utils/yq e -i ".httpd.httpdSslKeyFile = \"${SSL_CERT_KEY_FILE}\"" /app/config/config.yaml && sudo sed -i "s#^SSLCertificateKeyFile .*#SSLCertificateKeyFile \"${SSL_CERT_KEY_FILE}\"#g" /etc/httpd/conf/httpd.conf SSL_PASSPHRASE_FILE="/etc/httpd/conf/certs/custom_key_passphrase.sh" [[ -f "${SSL_PASSPHRASE_FILE}" ]] && sudo sed -i "/^SSLCertificateKeyFile /a SSLPassPhraseDialog exec: \"${SSL_PASSPHRASE_FILE}\"" /etc/httpd/conf/httpd.conf sudo systemctl restart httpd
Fix httpd Error in SELinux-Enabled Systems
| Note |
|---|
This section should be applied after upgrading from 1.0.22.0 to 1.0.22.1. |
...
To fix it, execute the following commandcommands:
| Code Block |
|---|
getenforce | grep Enforcing >/dev/null && sudo semanage fcontext -a -t httpd_log_t '/logs/httpd(/.*)?' && sudo restorecon -vvRF /logs/httpd sudo systemctl restart httpd |
...