Project

General

Profile

Actions
Copy link

Bug #22326

closed

some nodes are called "localhost" since #8022

Bug #22326: some nodes are called "localhost" since #8022

Added by Nicolas CHARLES almost 3 years ago. Updated over 2 years ago.

Status:
Released
Priority:
N/A
Assignee:
Vincent MEMBRÉ
Category:
Web - Nodes & inventories
Target version:
7.2.5
Pull Request:
https://github.com/Normation/rudder/p...
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
Checked
Regression:
No

Description

since https://issues.rudder.io/issues/8022, some nodes are called "localhost"
It's because the tag RUDDER/HOSTNAME contains localhost (result of hostname --fqdn) and is not validated anymore, with no fallback to osfqdn

Related issues 3 (0 open3 closed)

Related to Rudder - User story #8022: Allow users to specify node hostname (FQDN)ReleasedAlexis MoussetActions
Related to Rudder - Enhancement #22528: Add tests for linux inventory signature with certificateReleasedVincent MEMBRÉActions
Related to Rudder - Bug #25706: FQDN on Windows node can take localhost as valueReleasedFélix DALLIDETActions

Updated by Nicolas CHARLES almost 3 years ago Actions
Copy link
 #2

  • Related to User story #8022: Allow users to specify node hostname (FQDN) added

Updated by François ARMAND almost 3 years ago Actions
Copy link
 #3

  • Status changed from New to In progress
  • Assignee set to François ARMAND

Updated by François ARMAND almost 3 years ago Actions
Copy link
 #4

  • Status changed from In progress to Pending technical review
  • Assignee changed from François ARMAND to Vincent MEMBRÉ
  • Pull Request set to https://github.com/Normation/rudder/pull/4649

Updated by Anonymous almost 3 years ago Actions
Copy link
 #5

  • Status changed from Pending technical review to Pending release

Updated by Vincent MEMBRÉ almost 3 years ago Actions
Copy link
 #6

  • Target version changed from 1016 to 7.2.5

Updated by François ARMAND over 2 years ago Actions
Copy link
 #7

I now get the signature error, so still no correct fallback at that point. It should happens before checking for hostname.

 Rejecting Inventory 'linux-cfe-bad-hostname.ocs' for Node 'baded9c8-902e-4404-96c1-278acca64e3a' because the Inventory signature is not valid: the Inventory was not signed with the same agent key as the one saved within Rudder for that Node. If you updated the agent key on this node, you can update the key stored within Rudder with the https://docs.rudder.io/api/#api-Nodes-updateNodeapi (look for 'agentKey' property). The key path depends of your OS, on linux it's: '/var/rudder/cfengine-community/ppkeys/localhost.pub'. It is also contained in the <AGENT_CERT> value of inventory (you can extract public key with `openssl x509 -pubkey -noout -in - << EOF -----BEGIN CERTIFICATE----- .... -----END CERTIFICATE----- EOF`). If you did not change the key, please ensure that the node sending that inventory is actually the node registered within Rudder

In the inventory:

....
    <OPERATINGSYSTEM>
      ....
      <FQDN>agent1.rudder.local</FQDN>
      ...
    </OPERATINGSYSTEM>
    <RUDDER>
    ...
      <HOSTNAME>localhost</HOSTNAME>    
    </RUDDER>

Updated by François ARMAND over 2 years ago Actions
Copy link
 #8

  • Related to Enhancement #22528: Add tests for linux inventory signature with certificate added

Updated by François ARMAND over 2 years ago Actions
Copy link
 #9

  • Fix check changed from To do to Checked

I chekeck the cases in unit tests in #22528 and everything is working as expected.

Updated by Vincent MEMBRÉ over 2 years ago Actions
Copy link
 #10

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 7.2.5 which was released today.

Updated by Elaad FURREEDAN about 1 year ago Actions
Copy link
 #11

  • Related to Bug #25706: FQDN on Windows node can take localhost as value added
Actions
Copy link

Also available in: PDF Atom