Bug #19392: Rudder agent check should check if certificate matches private key - Rudder - Issue Tracker

Actions

Copy link

Bug #19392

closed

Rudder agent check should check if certificate matches private key

Added by Alexis Mousset over 3 years ago. Updated over 3 years ago.

Status:

Released

Priority:

N/A

Assignee:

Benoît PECCATTE

Category:

Agent

Target version:

6.1.14

Pull Request:

https://github.com/Normation/rudder-a...

Severity:

UX impact:

User visibility:

Effort required:

Priority:

Name check:

To do

Fix check:

Checked

Regression:

Description

# We verify that the certificate belongs to the private key (Modulus is identical)
modulus_cert=$(openssl x509 -noout -modulus -in "${PPKEYS}/agent.cert")
modulus_key=$(openssl rsa  -noout -modulus -passin "pass:Cfengine passphrase" -in "${PPKEYS}/localhost.priv")
if [ "${modulus_cert}" != "${modulus_key}" ]; then
  echo "Certificate does not match agent key" >&2
  exit 1
fi

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Rudder

Custom queries

Bug #19392

Rudder agent check should check if certificate matches private key

Updated by Alexis Mousset over 3 years ago

Updated by Alexis Mousset over 3 years ago

Updated by Alexis Mousset over 3 years ago

Updated by Nicolas CHARLES over 3 years ago

Updated by Vincent MEMBRÉ over 3 years ago