System allows to install ssl certificate as ssl_ca certificate
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Low
|
Alexandre Horst |
Bug Description
Brief Description
-----------------
System allow to install ssl certificate as ssl_ca certificate. There was no failure or error installation as below.
[root@controller-0 (keystone_admin)]# system certificate-install -m ssl_ca my-server-cert.pem
WARNING: For security reasons, the original certificate,
containing the private key, will be removed,
once the private key is processed.
-------
Property Value
-------
uuid 71b35de7-
certtype ssl_ca
signature ssl_ca_
start_date 2021-10-28 18:35:30+00:00
expiry_date 2022-10-28 18:35:30+00:00
-------
Severity
--------
Minor
Steps to Reproduce
------------------
Generate Certificate as per documentation Certificate Configuration (https:/
Install certificate SSL as SSL CA certificate:
system certificate-install -m ssl_ca my-server-cert.pem
Expected Behavior
-----------------
Failure to install
Actual Behavior
----------------
As per the description, there was no failure installed successfully
Reproducibility
---------------
Not sure seen once
System Configuration
-------
IPv6, AIO-DX subcloud
Branch/Pull Time/Commit
-------
StarlingX 5.0
Last Pass
---------
Not sure. This was tested
Timestamp/Logs
--------------
/fo
Alarms
------
No alarms
Test Activity
-------------
This issue was found during the upgrade test setup
Workaround
----------
Reinstall the with ssl_ca certificate
description: | updated |
Changed in starlingx: | |
assignee: | nobody → Alexandre Horst (ahorst) |
importance: | Undecided → Low |
tags: | added: stx.7.0 stx.security |
Fix proposed to branch: master /review. opendev. org/c/starlingx /config/ +/821235
Review: https:/