Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add test for installing CA with obsolete admin cert #4954

Merged
merged 1 commit into from
Feb 6, 2025
Merged

Add test for installing CA with obsolete admin cert #4954

merged 1 commit into from
Feb 6, 2025

Conversation

edewata
Copy link
Contributor

@edewata edewata commented Feb 6, 2025

The test for installing CA with existing config has been updated to reinstall the CA with new system certs but with an old admin cert from the previous installation (which should fail). Then the test will remove the admin cert and reinstall the CA again (which should succeed) and a new admin cert should be created.

pkispawn was updated to indicate that the installation failure might be caused by an obsolete admin cert.

...
INFO: Checking admin cert in /root/.dogtag/localhost/ca_admin_cert.p12
INFO: Exporting admin cert from /root/.dogtag/localhost/ca_admin_cert.p12
INFO: Verifying admin cert in /root/.dogtag/localhost/ca_admin_cert.p12
ERROR: Invalid certificate: Unable to validate certificate signature: CN=PKI Administrator,E=caadmin@example.com,OU=localhost,O=EXAMPLE

Installation failed: Invalid/obsolete admin certificate in /root/.dogtag/localhost/ca_admin_cert.p12

@edewata
Add test for installing CA with obsolete admin cert
c083523 
The test for installing CA with existing config has been updated
to reinstall the CA with new system certs but with an old admin
cert from the previous installation (which should fail). Then the
test will remove the admin cert and reinstall the CA again (which
should succeed) and a new admin cert should be created.

pkispawn was updated to indicate that the installation failure
might be caused by an obsolete admin cert.
@edewata edewata requested a review from fmarco76 February 6, 2025 03:02
@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Feb 6, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
7.3% Duplication on New Code

See analysis details on SonarQube Cloud

fmarco76
fmarco76 approved these changes Feb 6, 2025
View reviewed changes
Copy link
Member

@fmarco76 fmarco76 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@edewata
Copy link
Contributor Author

edewata commented Feb 6, 2025

@fmarco76 Thanks!

@edewata edewata merged commit 8fc88c5 into dogtagpki:master Feb 6, 2025
167 of 174 checks passed
@edewata edewata mentioned this pull request Feb 7, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@fmarco76 fmarco76 fmarco76 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@edewata @fmarco76