Packet ignored by Linux agent

Share your tips or issues concerning the WAPT Console or WAPT Agent here
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Locked
RodrigueR
Messages: 3
Registration: July 9, 2021 - 11:31

July 9, 2021 - 12:19

Good morning,

I believe I followed the Linux agent installation procedure to the letter. I did it from a Debian 10 system. I especially double-checked that the certificate I used in the console to create packages was indeed in the /opt/wapt/ssl directory as required.

However, the Linux agent insists on "ignoring" (discarding) all the packets in my repository:
INFO Discarding mc-winfusionagent-x64(=2.6.0-1) on repo "wapt": None of certificates ("Rodrigue ROYER") are trusted.
...
Total packages: 0
Added packages:

Removed packages:

Discarded packages count: 63
Question: Does this certificate need to have a specific name, because if so, it's not mentioned in the documentation?
Aside from using the -l debug option of the wapt-get update command, what command or log can I look at to understand what's wrong in my case?

WAPT version: 1.8.2.7334 (Community Edition)
Server OS: Debian 10 “Buster”
Operating system of the administration/package creation machine: Windows 10 20h2
High
User avatar
dcardon
WAPT Expert
Messages: 1932
Registration: June 18, 2014 - 09:58
Location: Saint Sébastien sur Loire
Contact :
Contact dcardon

July 15, 2021 - 9:32 PM

Good evening RodrigueR,
could you please post your control file? There's probably something that doesn't match the Linux agent.
Regards,
Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
High
RodrigueR
Messages: 3
Registration: July 9, 2021 - 11:31

July 20, 2021 - 1:45 PM

Hello,

I've attached the control file for the Linux package I'm trying to create for Webmin.

This is the first Linux package I've attempted, but I've successfully created others for Windows that are fully functional.

If I'm also getting the same error message for Windows packages, should I assume that this behavior (signature rejection) is normal for packages not intended for the operating system (with the target_os option)?
Attachments
control.zip
control file of my webmin package
(1.04 KB) Downloaded 275 times
High
User avatar
dcardon
WAPT Expert
Messages: 1932
Registration: June 18, 2014 - 09:58
Location: Saint Sébastien sur Loire
Contact :
Contact dcardon

July 21, 2021 - 10:10

The control file is correct (I wanted to check the target_os field, which changed quite a bit between version 1.8 and version 2.0). The certificate file doesn't require a specific format in /opt/wapt/ssl/.
The client discards a package if the package signature doesn't have a matching certificate. Could you please verify that the signing key matches the certificate?
Sincerely,
Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
High
RodrigueR
Messages: 3
Registration: July 9, 2021 - 11:31

July 22, 2021 - 2:08 PM

dcardon wrote: July 21, 2021 - 10:10 Could you please verify that the signing key corresponds to the certificate?
I would be delighted to be able to do this check but I'm afraid I don't really know which commands to run to be able to make this comparison.

In any case, the signer_fingerprint field of this control file corresponds perfectly to the same field in a control file of a Windows package.
However, if you're referring to the signature field, it seems different, but perhaps that's because I shouldn't just read it with a simple text editor, I imagine...
High
Locked

Return to "WAPT usage (Console, Agent) / WAPT usage (Console, Agent)"


  • To go further with WAPT