active controller swacted unexpected upon installed password protected private key into TPM
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Invalid
|
Medium
|
Andy |
Bug Description
Brief Description
-----------------
After installing password protected private key using CLI, controllers was swacted automatically, and alarms 'Configuration is out-of-date' and others were raised for both controllers.
Severity
--------
Minor
Steps to Reproduce
------------------
1 enable https using CLI
2 attempt to install a password protected private certificate to TPM
system certificate-install -p serverpass -m tpm_mode tpm-test-
Expected Behavior
------------------
- the system continued to work without issue after the CLI executed
Actual Behavior
----------------
the CLI ran successfully but
- alarms 'Configuration is out-of-date' and others were raised for both controllers
- existing ssh sessions to the active controller were broken from server side
- active controller was swacting automatically
- host key of the floating IP was changed
After a 5+ minutes later, the previous standby controller became newly active controller, all alarms were automatically cleared, and no further findings observed.
Reproducibility
---------------
Reproducible
System Configuration
-------
Multi-node system
Branch/Pull Time/Commit
-------
master as of build-date-time
StarlingX Upstream as of 2018-12-27_20-18-00
Timestamp/Logs
--------------
Dec. 31, 2018, 10:07 p.m
tags: |
added: stx.2019.05 removed: stx.2019.03 |
Changed in starlingx: | |
assignee: | Paul-Emile Element (paul-emileelement) → Andy (andy.wrs) |
tags: |
added: stx.2.0 removed: stx.2019.05 |
tags: | added: stx.retestneeded |
Changed in starlingx: | |
status: | Triaged → In Progress |
status: | In Progress → Invalid |
tags: |
added: stx.stx.security removed: stx.retestneeded stx.security |
tags: |
added: stx.security removed: stx.stx.security |
Marking as release gating - issue is reproducible and results in an unexpected system swact