Project

General

Profile

Bug #33431

Use OpenSSL Ruby to ensure Apache certificate bundle is in the proper format on FIPS machines

Added by Eric Helms 11 months ago. Updated 11 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Foreman modules
Target version:
Difficulty:
Triaged:
Yes
Bugzilla link:
Fixed in Releases:
Found in Releases:

Associated revisions

Revision ffeb6f46 (diff)
Added by Eric Helms 11 months ago

Fixes #33431: Use Ruby OpenSSL to ensure PKCS1 format

On FIPS enabled machines, private keys generated are not in PKCS #1
format which is required by Apache for bundled SSL proxy machine
certiicates. This switches to using Ruby's OpenSSL library to generate
the proper format when needing to force PKCS #1 format rather than
string manipulation.

History

#1 Updated by The Foreman Bot 11 months ago

  • Assignee set to Eric Helms
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/puppet-certs/pull/380 added

#2 Updated by The Foreman Bot 11 months ago

  • Fixed in Releases 3.2.0 added

#3 Updated by Eric Helms 11 months ago

  • Status changed from Ready For Testing to Closed

#4 Updated by Ewoud Kohl van Wijngaarden 11 months ago

  • Fixed in Releases 3.1.0 added
  • Fixed in Releases deleted (3.2.0)
  • Pull request deleted (https://github.com/theforeman/puppet-certs/pull/380)

#5 Updated by Ewoud Kohl van Wijngaarden 11 months ago

  • Triaged changed from No to Yes
  • Target version set to 3.1.0
  • Category set to Foreman modules
  • Pull request https://github.com/theforeman/puppet-certs/pull/380 added

Also available in: Atom PDF