[MEN-1823] Detect and repair corrupted client keys - Northern.tech AS

XML

Word

Printable

Details

Type: Task
Status: Done
Priority: Medium
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.4.1
Labels:
- Client

Sprint:
MEN Sprint 58, MEN Sprint 59
Story Points:
5
Backlog:
yes

Description

If a device loses its power during generating the client key, the next it gets powered up, while being executed with mender -daemon, it will crash at bootstrap stage. To solve this, a user has added a feature to mender client for making sure it generates the key successfully. There’s a side effect, which is now every time when a device is booted first time after an OTA, the client key will be re-generated.

Acceptance criteria

Before using the key, the validity of the keypair (both private and public part) is checked
If the key is invalid, any old ones are moved to a backup (e.g. key.previous) and a new one is generated
Appropriate (error) log message about this occurrence
Once a valid key has been generated, subsequent updates will not need to regenerate.

Attachments

Release management

Activity

People

Assignee:: Kristian Amlie

Reporter:: Drew Moseley

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 20/Mar/18 6:43 PM

Updated:: 23/Oct/19 10:55 AM

Resolved:: 16/Apr/18 9:35 AM