Bug #27876
closedkatello-certs-check should display an error if there is a passphrase protected key file
Description
katello-certs-check should display a warning if there is a passphrase protected
Version-Release number of selected component (if applicable):
satellite-6.6.0-5.beta.el7sat.noarch
foreman-installer-katello-1.22.0.8-1.el7sat.noarch
How reproducible:
Always
Steps to Reproduce:
1. Create a key with password protected
2. # openssl genrsa -aes128 -passout pass:foobar -out /root/sat_cert/satellite_cert_key.pem 4096
3. For verification use katello-certs-check
If you use a passphrase some of the services will not start:
Aug 30 23:08:44 vm250-205.gsslab.pnq2.redhat.com smart_proxy_dynflow_core23103: /opt/theforeman/tfm/root/usr/share/gems/gems/smart_proxy_dynflow_core-0.2.2/lib/smart_proxy_dynflow_core/launcher.rb:124:in `initialize': Neither PUB key nor PRIV key: nested asn1 error (OpenSSL::PKey::RSAError)
Files
Updated by Chris Roberts about 5 years ago
- File ourCA.crt ourCA.crt added
- File privkey.pem privkey.pem added
- File server.crt server.crt added
Updated by The Foreman Bot about 5 years ago
- Status changed from Assigned to Ready For Testing
- Pull request https://github.com/theforeman/foreman-installer/pull/393 added
Updated by Chris Roberts about 5 years ago
Pomegranate is the password for the private key
Updated by Chris Roberts almost 5 years ago
- Status changed from Ready For Testing to Closed
Applied in changeset installer|8987d032e6093851839ab1292596e5d4537d9004.
Updated by Tomer Brisker almost 5 years ago
- Fixed in Releases 1.24.0 added
- Fixed in Releases deleted (
2.0.0)