CN for server certificate file for local registry
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Low
|
Juanita-Balaraj |
Bug Description
Brief Description
-----------------
In the manual, https:/
Create the Server certificate signing request (csr).
Specify CN=<WRCP-
But, the default server certificate for local registry which is created during bootstrap, "registry.local" is used as CN.
controller-0:~$ sudo openssl x509 -noout -text -in /etc/ssl/
Password:
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
Signature Algorithm: sha256WithRSAEn
Issuer: CN=registry.local <- Here
Validity
Not Before: Sep 27 14:39:33 2022 GMT
Not After : Sep 27 14:39:33 2023 GMT
Subject: CN=registry.local
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
The correct value is:
Specify CN=registry.local and do not specify a challenge password.
Severity
--------
<Minor: System/Feature is usable with minor issue>
Steps to Reproduce
------------------
-
Expected Behavior
------------------
-
Actual Behavior
----------------
-
Reproducibility
---------------
<Reproducible/
State if the issue is 100% reproducible, intermittent or seen once. If it is intermittent, state the frequency of occurrence
System Configuration
-------
<One node system, Two node system, Multi-node system, Dedicated storage, https, IPv4, IPv6 etc.>
Branch/Pull Time/Commit
-------
Branch and the time when code was pulled or git commit or cengn load info
Last Pass
---------
Did this test scenario pass previously? If so, please indicate the load/pull time info of the last pass.
Use this section to also indicate if this is a new test scenario.
Timestamp/Logs
--------------
Attach the logs for debugging (use attachments in Launchpad or for large collect files use: https:/
Provide a snippet of logs here and the timestamp when issue was seen.
Please indicate the unique identifier in the logs to highlight the problem
Test Activity
-------------
[Sanity, Feature Testing, Regression Testing, Developer Testing, Evaluation, Other - Please specify]
Workaround
----------
Describe workaround if available
Changed in starlingx: | |
assignee: | nobody → Juanita-Balaraj (balaraj) |
Changed in starlingx: | |
status: | New → In Progress |
tags: | added: stx.docs |
Changed in starlingx: | |
importance: | Undecided → Low |
Reviewed: https:/ /review. opendev. org/c/starlingx /docs/+ /865196 /opendev. org/starlingx/ docs/commit/ 35021e03fe819eb d85179ace67b0f9 0d853764ae
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 35021e03fe819eb d85179ace67b0f9 0d853764ae
Author: Juanita-Balaraj <email address hidden>
Date: Mon Nov 21 15:16:46 2022 -0500
Updated CN to "CN=registry.local" (r6, dsr6, r7, dsr7)
Closes- Bug:1997489
Signed-off-by: Juanita-Balaraj <email address hidden> a277b04cf3620f6 8129707f4dd
Change-Id: Ia119e8d8cf8db3