[
https://issues.apache.org/jira/browse/HDDS-8409?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Szabolcs Gál resolved HDDS-8409.
--------------------------------
Resolution: Not A Problem
There is already a validation in the final phase when a certificate and the
keys are found. At first it checks if a signature can be performed and verified
by the keypair and then the same check if performed but with the private key
remaining the same and the public key coming from the certificate. This way it
is ensured that even with the public key stored in the certificate, successful
signature and verification can be performed.
> Validate that the public key belongs to the certificate during startup
> ----------------------------------------------------------------------
>
> Key: HDDS-8409
> URL: https://issues.apache.org/jira/browse/HDDS-8409
> Project: Apache Ozone
> Issue Type: Sub-task
> Reporter: Szabolcs Gál
> Assignee: Szabolcs Gál
> Priority: Major
>
> Right now only the keypairs are validated, it's possible to start up with a
> certificate that does not belong to the existing keypair. Make sure this
> can't happen and throw a meaningful error.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
