OpenStack Designate Charm

ssl_cert and ssl_key are not synced from 'juju config'

Bug #1865842 reported by Celia Wang on 2020-03-03

This bug affects 3 people

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Designate Charm	Fix Released	Medium	James Page	OpenStack Designate Charm 20.10

Bug Description

Current issue:
After used 'juju config designate ssl_cert' and 'juju config designate ssl_key' to update cert/key, the new value is shown when 'juju config' again to check. But the cert/key are not synced to the designate units. On-disk cert/key are still the old ones.

Details:
Pemulwuy jujumanage@infr001:~$ juju config designate ssl_cert | base64 --decode | openssl x509 -noout -text
Certificate:
.......
        Validity
            Not Before: Feb 24 00:18:29 2020 GMT
            Not After : Feb 23 00:18:29 2022 GMT
.......

Pemulwuy jujumanage@infr001:~$ juju ssh designate/3
ubuntu@juju-5b85c6-19-lxd-11:~$ openssl x509 -in /etc/apache2/ssl/designate/cert_designate.au-east-1.oc.rabonet.com -noout -text
Certificate:
.......
        Validity
            Not Before: Mar 26 02:03:45 2018 GMT
            Not After : Mar 25 02:03:45 2020 GMT
.......

Pemulwuy jujumanage@infr001:~$ juju config designate ssl_key | base64 --decode
-----BEGIN PRIVATE KEY-----
.......
/NPnTbHBzQtBkHaFU5TNokNXoAc=
-----END PRIVATE KEY-----

Pemulwuy jujumanage@infr001:~$ juju ssh designate/3
ubuntu@juju-5b85c6-19-lxd-11:~$ sudo cat /etc/apache2/ssl/designate/key_designate.au-east-1.oc.rabonet.com
-----BEGIN RSA PRIVATE KEY-----
.......
/BhC0hpAMGzw+n4=
-----END RSA PRIVATE KEY-----

Revision history for this message

Andrew McLeod (admcleod) wrote on 2020-03-05:

What distribution and release does this apply to?

Changed in charm-designate:
status:	New → Incomplete

Revision history for this message

Celia Wang (ziyiwang) wrote on 2020-03-08:

Xenial 16.04.6
Juju 2.7.3-xenial-amd64
designate 6.0.1 Rev 21

Celia Wang (ziyiwang) on 2020-03-22

Changed in charm-designate:
status:	Incomplete → New

Revision history for this message

James Page (james-page) wrote on 2020-07-23:

https://review.opendev.org/742598

Changed in charm-designate:
importance:	Undecided → Medium
status:	New → In Progress
assignee:	nobody → James Page (james-page)

Revision history for this message

Billy Olsen (billy-olsen) wrote on 2020-10-09:

This should be fixed with this change in https://github.com/openstack/charms.openstack/commit/69eb753b02adb5d5a589fdded49094df38e086d3 as well as the recent library syncs in https://review.opendev.org/#/c/754522/.

Marking as fix-committed.

Changed in charm-designate:
status:	In Progress → Fix Committed
milestone:	none → 20.10

Alex Kavanagh (ajkavanagh) on 2020-11-02

Changed in charm-designate:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

Duplicates of this bug

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.