TLS doesn't work for inter-controller communication
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
MAAS |
Expired
|
Undecided
|
Unassigned |
Bug Description
Version : MAAS 2.4
In rackd.conf, you can't use https:// because the name will be converted to https://[::::ffff:
See /usr/lib/
line 1050 and following.
Resulting in :
Jun 18 17:46:15 inf-p-mas001 sh[558]: 2018-06-18 17:46:15 provisioningser
Jun 18 17:46:15 inf-p-mas001 sh[558]: Traceback (most recent call last):
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: d = maybeDeferred(
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: result = f(*args, **kw)
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: return _inlineCallback
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: result = g.send(result)
Jun 18 17:46:15 inf-p-mas001 sh[558]: --- <exception caught here> ---
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: info = yield self._fetch_
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: Headers(
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: endpoint = self._getEndpoi
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: return self._endpointF
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: uri.port)
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: trustRoot=
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: return ClientTLSOption
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: self._hostnameBytes = _idnaBytes(
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: return idna.encode(text)
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: result.
Jun 18 17:46:15 inf-p-mas001 sh[558]: File "/usr/lib/
Jun 18 17:46:15 inf-p-mas001 sh[558]: raise IDNAError('The label {0} is not a valid A-label'
Jun 18 17:46:15 inf-p-mas001 sh[558]: idna.core.
Jun 18 17:46:15 inf-p-mas001 sh[558]:
summary: |
- SSL doesn't work for inter-controller communication + [enhacement] SSL doesn't work for inter-controller communication |
Changed in maas: | |
status: | New → Triaged |
milestone: | none → 2.5.0 |
tags: | added: enhancement |
tags: | added: wishlist |
Changed in maas: | |
milestone: | 2.5.0 → next |
Changed in maas: | |
milestone: | next → none |
Is there a workaround for this?