[Bug]: BundleDelivery of CA certificates fails if certificates are read-only on the server

[maxnoe]

Search before creating an issue

• I have searched existing issues and confirmed this is not a duplicate

Bug Description

When the CA files are read-only on the server (BundleDelivery component), the sync to clients fails because the permissions are copied over and then something tries to write again:

Current hash for bundle CAs in directory /home/dirac/diracos/etc/grid-security/certificates is ''
Synchronizing directory with remote bundle
Could not sync directory: [Errno 13] Permission denied: '/home/dirac/diracos/etc/grid-security/certificates/04f60c28.r0'
Failed to sync CAs and/or CRLs Certificates directory update failed: [Errno 13] Permission denied: '/home/dirac/diracos/etc/grid-security/certificates/04f60c28.r0'

dirac@wms-pytest wms]$ ls -l /home/dirac/diracos/etc/grid-security/certificates/
total 12
lrwxrwxrwx. 1 dirac dirac   38 May 12 10:46 04f60c28.0 -> USERTrustECCCertificationAuthority.pem
lrwxrwxrwx. 1 dirac dirac   45 May 12 10:46 04f60c28.namespaces -> USERTrustECCCertificationAuthority.namespaces
-r--r--r--. 1 dirac dirac 1210 May 12 10:42 04f60c28.r0

Steps to Reproduce

No response

Expected Behavior

No response

Actual Behavior

No response

Environment

No response

Relevant Log Output

Additional Context

No response

[fstagni]

Hi Max, in which version of DIRAC?

[maxnoe]

This was in our integration test environment using 9.1.4