X509 auth driver should check errors when encripting
|Category:||Drivers - Auth|
|Affected Versions:||OpenNebula 3.8|
An exception is returned if the data to be encripted is too large for that key size.
OpenSSL::PKey::RSAError - data too large for key size:
#1 Updated by Ruben S. Montero over 8 years ago
- Category set to Drivers - Auth
- Target version set to Release 4.0
Also other errors should be more clearly shown in the logs. For example wrong permissions in r/the CA hash files make the authentication fails with a cryptic message:
/usr/lib/one/ruby/x509_auth.rb:183: `data greater than mod len'
from /usr/lib/one/ruby/x509_auth.rb:183:in `decrypt'
from /usr/lib/one/ruby/x509_auth.rb:116:in `authenticate'
Reported by Uli in the maling list (THANKS!)