eapol: commit fails with KeyError when PKI certificate name differs from the CA name
Closed, ResolvedPublicBUG
Actions

Assigned To

Authored By

	chenxiaolong
	Feb 14 2022, 10:06 PM

Description

When an eapol configuration is set up with a CA cert and client cert with different names, the config validation step for commit crashes with a KeyError.

It seems this is due to a simple typo: https://github.com/vyos/vyos-1x/blob/122c7a53575f67759f157e02eca776f799658dc1/python/vyos/configverify.py#L171-L176

The code is indexing config['pki']['ca'] with cert_name instead of ca_cert_name.

Details

Difficulty level: Easy (less than an hour)
Version: 1.4-rolling-202202080317
Why the issue appeared?: Will be filled on close
Is it a breaking change?: Perfectly compatible
Issue type: Bug (incorrect behavior)

Event Timeline

chenxiaolong created this task.Feb 14 2022, 10:06 PM

I've submitted a PR to fix this here: https://github.com/vyos/vyos-1x/pull/1220

pasik added a subscriber: pasik.Feb 15 2022, 9:06 AM

chenxiaolong closed this task as Resolved.Feb 18 2022, 8:21 PM

chenxiaolong claimed this task.

eapol: commit fails with KeyError when PKI certificate name differs from the CA nameClosed, ResolvedPublicBUGActions

Description

Details

Event Timeline

eapol: commit fails with KeyError when PKI certificate name differs from the CA name
Closed, ResolvedPublicBUG
Actions