X509 auth driver should check errors when encripting
|Category:||Drivers - Auth|
|Resolution:||Affected Version:||OpenNebula 3.8|
An exception is returned if the data to be encripted is too large for that key size.
OpenSSL::PKey::RSAError - data too large for key size:
Updated by Ruben S. Montero 8 months ago
- Category set to Drivers - Auth
- Target version set to Release 4.0
Also other errors should be more clearly shown in the logs. For example wrong permissions in r/the CA hash files make the authentication fails with a cryptic message:
/usr/lib/one/ruby/x509_auth.rb:183: `data greater than mod len'
from /usr/lib/one/ruby/x509_auth.rb:183:in `decrypt'
from /usr/lib/one/ruby/x509_auth.rb:116:in `authenticate'
Reported by Uli in the maling list (THANKS!)
Updated by Ruben S. Montero 7 months ago
- Tracker changed from Feature to Bug
- Affected Version set to OpenNebula 3.8