barbican-vault is stuck with waiting - 'secrets-storage' incomplete
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Barbican-Vault Charm |
New
|
Undecided
|
Unassigned |
Bug Description
There is a similar bug report already but closed with Invalid so filing a new one.
https:/
Also it's worth noting that the previous bug was focused on HA setup including vip and such, but this time it's a non HA deployment on a test bed. It's not a one-off issue but sometimes happens.
And with only one network space:
$ juju spaces
Name Space ID Subnets
alpha 0
space-first 1 192.168.151.0/24
undefined 2 10.0.9.0/24
cs:barbican-
Steps to reproduce:
1. juju deploy ./bundle.yaml
2. juju-wait -w --max_wait 4500 \
--exclude vault \
--exclude neutron-
--exclude ovn-central \
--exclude ovn-chassis \
--exclude octavia \
--exclude octavia-ovn-chassis \
--exclude barbican-vault
3. juju run-action vault/leader --wait generate-root-ca
4. juju-wait -w --max_wait 1800 \
--exclude octavia
Expected:
Step 4 completes without an error
Actual:
(Sometimes) Step 4 fails with timeout, and even after that barbican-vault is stuck indefinitely.
description: | updated |
$ juju run -u barbican-vault/0 -- charms.reactive get_flags vault-installed subordinate openstack. do-default- charm.installed openstack. do-default- config. changed openstack. do-default- update- status secrets- storage. changed secrets- storage. changed. egress- subnets secrets- storage. changed. ingress- address secrets- storage. changed. private- address secrets- storage. changed. vault_url secrets- storage. joined secrets. changed secrets. changed. egress- subnets secrets. changed. ingress- address secrets. changed. private- address secrets. joined storage. connected
barbican-
charm.installed
charm.is-
charms.
charms.
charms.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
secrets-
$ juju run -u vault/0 -- charms.reactive get_flags available ca.ready global- client- cert.created certificates. changed certificates. changed. cert_requests certificates. changed. certificate_ name certificates. changed. common_ name certificates. changed. egress- subnets certificates. changed. ingress- address certificates. changed. private- address certificates. changed. sans certificates. changed. unit_name certificates. joined secrets. changed secrets. changed. egress- subnets secrets. changed. ingress- address secrets. changed. private- address secrets. changed. unit_name secrets. joined is_leader set.local- charm-access- id set.root- ca set.root_ token vault configured
certificates.
charm.vault.
charm.vault.
configured
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
endpoint.
leadership.
leadership.set.keys
leadership.
leadership.
leadership.
pki.backend.tuned
secrets.connected
shared-db.available
shared-db.connected
snap.installed.core
snap.installed.
snap.refresh.set
started
vault.ssl.