Project

General

Profile

Actions

Bug #27876

closed

katello-certs-check should display an error if there is a passphrase protected key file

Added by Chris Roberts about 5 years ago. Updated almost 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
foreman-installer script
Target version:
Difficulty:
easy
Triaged:
No
Fixed in Releases:
Found in Releases:

Description

katello-certs-check should display a warning if there is a passphrase protected

Version-Release number of selected component (if applicable):
satellite-6.6.0-5.beta.el7sat.noarch
foreman-installer-katello-1.22.0.8-1.el7sat.noarch

How reproducible:
Always

Steps to Reproduce:
1. Create a key with password protected
2. # openssl genrsa -aes128 -passout pass:foobar -out /root/sat_cert/satellite_cert_key.pem 4096
3. For verification use katello-certs-check

If you use a passphrase some of the services will not start:

Aug 30 23:08:44 vm250-205.gsslab.pnq2.redhat.com smart_proxy_dynflow_core23103: /opt/theforeman/tfm/root/usr/share/gems/gems/smart_proxy_dynflow_core-0.2.2/lib/smart_proxy_dynflow_core/launcher.rb:124:in `initialize': Neither PUB key nor PRIV key: nested asn1 error (OpenSSL::PKey::RSAError)


Files

ourCA.crt ourCA.crt 1.34 KB Chris Roberts, 09/17/2019 06:37 PM
privkey.pem privkey.pem 1.79 KB Chris Roberts, 09/17/2019 06:37 PM
server.crt server.crt 1.1 KB Chris Roberts, 09/17/2019 06:37 PM
Actions #1

Updated by Chris Roberts about 5 years ago

  • Target version set to 1.24.0
Actions #3

Updated by The Foreman Bot about 5 years ago

  • Status changed from Assigned to Ready For Testing
  • Pull request https://github.com/theforeman/foreman-installer/pull/393 added
Actions #4

Updated by Chris Roberts about 5 years ago

Pomegranate is the password for the private key

Actions #5

Updated by The Foreman Bot almost 5 years ago

  • Fixed in Releases 2.0.0 added
Actions #6

Updated by Chris Roberts almost 5 years ago

  • Status changed from Ready For Testing to Closed
Actions #7

Updated by Tomer Brisker almost 5 years ago

  • Fixed in Releases 1.24.0 added
  • Fixed in Releases deleted (2.0.0)
Actions

Also available in: Atom PDF