python-keystoneclient

auth_token PKI logs ERRORS on first cert download

Bug #1189539 reported by Dan Prince
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
python-keystoneclient
Fix Released
High
Adam Young
python-keystoneclient 0.3.2

Bug Description

Using python-keystoneclient Havana... I'm seeing LOG ERROR's at startup in all of my OpenStack service log files when using PKI.
Here is a snippet from /var/log/nova/api.log for example:

------
2013-06-10 11:47:13.099 21076 ERROR keystoneclient.common.cms [-] Verify error: Error opening certificate file /tmp/keystone-signing-nova/signing_cert.pem
139951350372192:error:02001002:system library:fopen:No such file or directory:bss_file.c:169:fopen('/tmp/keystone-signing-nova/signing_cert.pem','r')
139951350372192:error:2006D080:BIO routines:BIO_new_file:no such file:bss_file.c:172:

2013-06-10 11:47:13.117 21076 ERROR keystoneclient.common.cms [-] Verify error: Error loading file /tmp/keystone-signing-nova/cacert.pem
139837526517600:error:02001002:system library:fopen:No such file or directory:bss_file.c:169:fopen('/tmp/keystone-signing-nova/cacert.pem','r')
139837526517600:error:2006D080:BIO routines:BIO_new_file:no such file:bss_file.c:172:
139837526517600:error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib:by_file.c:279:
------

Everything works fine... and PKI is working correctly. We should not be logging ERROR's under these circumstances.

Dan Prince (dan-prince)
Changed in python-keystoneclient:
assignee: nobody → Dan Prince (dan-prince)
importance: Undecided → High
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to python-keystoneclient (master)

Fix proposed to branch: master
Review: https://review.openstack.org/32433

Revision history for this message
OpenStack Infra (hudson-openstack) wrote :

Fix proposed to branch: master
Review: https://review.openstack.org/38185

Changed in python-keystoneclient:
assignee: Dan Prince (dan-prince) → Adam Young (ayoung)
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to python-keystoneclient (master)

Reviewed: https://review.openstack.org/38185
Committed: http://github.com/openstack/python-keystoneclient/commit/2bb6137f48b7516a6870dd86700d09d8aa977caf
Submitter: Jenkins
Branch: master

commit 2bb6137f48b7516a6870dd86700d09d8aa977caf
Author: Adam Young <email address hidden>
Date: Mon Jul 22 13:50:46 2013 -0400

    no logging on cms failure

    Don't log in the keystoneclient.common.cms as there are some errors
    that are expected. Instead, log in the middleware

    bug 1189539

    Change-Id: I1e80e2ab35e073d9b8d25fd16b31c64c34cd001d

Changed in python-keystoneclient:
status: In Progress → Fix Committed
Dolph Mathews (dolph)
Changed in python-keystoneclient:
milestone: none → 0.3.2
Dolph Mathews (dolph)
Changed in python-keystoneclient:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.