Project

General

Profile

Actions
Copy link

Bug #12374

closed

Technique GPG Key Management and SSH Key Management don't work in audit mode

Added by Nicolas CHARLES about 6 years ago. Updated over 5 years ago.

Status:
Released
Priority:
N/A
Assignee:
-
Category:
Techniques
Target version:
4.3.9
Pull Request:
Severity:
Major - prevents use of part of Rudder | no simple workaround
UX impact:
User visibility:
Getting started - demo | first install | level 1 Techniques
Effort required:
Large
Priority:
0
Name check:
Fix check:
Regression:

Description

In audit mode, GPG Key management does not execute command, so it fails to list existing keys, or check their values
SSH Key Management works (unless we flush them), but when we'll have the directive by directive, it will also fail, because the copy of file to temp location, plus it's edit, and copy to final location will fail

As discussed with Benoit, the only viable solution would be to override inside the technique the audit mode with push/pop, to be able to execute some specific commands/edition/copy

This is a fairly complex task, which needs obviously a lot of testing

Targeting to 4.3, as impact for 4.1 is too big

Related issues 3 (0 open3 closed)

Related to Rudder - Bug #13065: Package repository keys Technique in Audit Mode : Missing ReportsReleasedAlexis MoussetActions
Is duplicate of Rudder - Bug #13236: repoGPGKey does not report at all when in audit mode (branch 4.3)ReleasedAlexis MoussetActions
Is duplicate of Rudder - User story #12357: Port "SSH authorised keys" Technique to multiversionned techniqueReleasedNicolas CHARLESActions
Actions
Copy link

Also available in: Atom PDF