Invalid signature after upgrade waptserver

Questions about WAPT Server / Requests and help related to the WAPT server
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Locked
chnateag
Messages: 9
Registration: May 20, 2016 - 10:23

June 23, 2017 - 5:31 PM

Good morning,


We just updated our WAPT server. I kept my private/public keys and certificate in the POST configuration. We regenerated a new agent, but when I try to deploy it, I keep getting invalid signature errors

Code: Select all

id;description;summary;start_date;logs
59;Installation of pc33.local.exemple.net (=13) (task #59);Exception: Package file c:\wapt\cache\pc33.local.exemple.net.wapt signature is invalid;2017-06-23T17:08:29.685000;"Exception: Package file c:\wapt\cache\pc33.local.exemple.net.wapt signature is invalid
Traceback (most recent call last):
  File ""c:\wapt\waptservice\waptservice.py"", line 2100, in run
    self.running_task.run()
  File ""c:\wapt\waptservice\waptservice.py"", line 1360, in pwrapper
    return func(*arg, **kwargs)
  File ""c:\wapt\waptservice\waptservice.py"", line 1420, in run
    self._run()
  File ""c:\wapt\waptservice\waptservice.py"", line 1822, in _run
    self.result = self.wapt.install(self.packagename,force = self.force)
  File ""c:\wapt\common.py"", line 4108, in install
    raise Exception(u'Package file %s signature is invalid' % ensure_unicode(fname))
Exception: Package file c:\wapt\cache\pc33.local.exemple.net.wapt signature is invalid
"
The only information I can find on the mailing lists is that my package isn't signed with the same certificates, but that's definitely the case, so I checked the dates and regenerated the agent several times! Furthermore, it does appear in the repository with the new version.
I also cleared the server and machine caches while I was at it, and restarted the services, but no improvement

I double-checked the ssl directory in c:/wapt and it's the correct one

Thanks in advance for any help and ideas; I'm completely out of them
High
User avatar
agauvrit
WAPT Expert
Messages: 238
Registration: Nov 17, 2016 - 10:25
Location: Nantes
Contact :
Contact agauvrit

June 23, 2017 - 5:41 PM

The certificate you use when creating the agent must match the private key normally used for signing packages (i.e., the waptupgrade package).

Is this correct?

Which version of WAPT are you using?

Sincerely,

Alexandre
High
chnateag
Messages: 9
Registration: May 20, 2016 - 10:23

June 23, 2017 - 6:05 PM

The CRT file for me is the very first one that was generated during our initial installation, along with the P12 and PEM files. Yes, they correspond.
We've now upgraded to the latest version, 1.3.12.15.
High
Locked

Return to "WAPT Server"


  • To go further with WAPT