CA private key has unexpected type *ecdsa.PrivateKey
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Canonical Juju |
Triaged
|
Low
|
Unassigned | ||
Bug Description
Apparently ECDSA is not supported for generating a controller certificate via ca-cert and ca-private-key, so this would be a feature request?
Even more useful would be a configuration switch to set a certificate and key to use in the controller, e.g. ssl-crt, ssl-key or ssl-bundle.
Original message for completeness:
juju bootstrap --auto-upgrade --config=~/lab.yaml --agent-version 2.3.1-xenial-amd64 vsphere juju
Creating Juju controller "juju" on lab
Looking for packaged Juju agent version 2.3.1 for amd64
Launching controller instance(s) on vsphere/lab...
- juju-61bef6-0 (arch=amd64 mem=3.5G) ef8-88b1-
Installing Juju agent on bootstrap instance
ERROR failed to bootstrap model: finalizing bootstrap instance config: cannot generate controller certificate: CA private key has unexpected type *ecdsa.PrivateKey
| Changed in juju: | |
| status: | New → Triaged |
| importance: | Undecided → Wishlist |
| Anastasia (anastasia-macmood) wrote | #1 |
| Canonical Juju QA Bot (juju-qa-bot) wrote | #2 |
| Changed in juju: | |
| importance: | Wishlist → Low |
| tags: | added: expirebugs-bot |
Upon further investigation (thank you, axwalk), in "utils/cert" package, NewLeaf is requiring key to be an rsa.PrivateKey but it doesn't seem to do anything RSA-specific. So, when/if we do decide to change it, it may not be too hard :)