We have a failed test run where in kubernetes-aws, vault/0 is in an error state due to:
hook failed: "certificates-relation-joined"
From the logs, we get:
2022-07-19 18:43:54 ERROR unit.vault/0.juju-log server.go:319 certificates:82: Hook error:
Traceback (most recent call last):
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/charms/reactive/__init__.py", line 74, in main
bus.dispatch(restricted=restricted_mode)
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/charms/reactive/bus.py", line 390, in dispatch
_invoke(other_handlers)
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/charms/reactive/bus.py", line 359, in _invoke
handler.invoke()
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/charms/reactive/bus.py", line 181, in invoke
self._action(*args)
File "/var/lib/juju/agents/unit-vault-0/charm/reactive/vault_handlers.py", line 1030, in create_certs
bundle = vault_pki.generate_certificate(cert_type,
File "/var/lib/juju/agents/unit-vault-0/charm/lib/charm/vault_pki.py", line 126, in generate_certificate
response = client.write('{}/issue/{}'.format(CHARM_PKI_MP, role),
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/hvac/v1/__init__.py", line 189, in write
response = self._adapter.post('/v1/{0}'.format(path), json=kwargs, wrap_ttl=wrap_ttl)
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/hvac/adapters.py", line 103, in post
return self.request('post', url, **kwargs)
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/hvac/adapters.py", line 233, in request
utils.raise_for_error(response.status_code, text, errors=errors)
File "/var/lib/juju/agents/unit-vault-0/.venv/lib/python3.8/site-packages/hvac/utils.py", line 39, in raise_for_error
raise exceptions.InternalServerError(message, errors=errors)
hvac.exceptions.InternalServerError: 1 error occurred:
* unable to store certificate locally: invalid connection
Test run:
https://solutions.qa.canonical.com/testruns/testRun/717b405e-d3c0-4349-b764-5c35ea4bea5d
Logs:
https://oil-jenkins.canonical.com/artifacts/717b405e-d3c0-4349-b764-5c35ea4bea5d/index.html
This is another run on openstack, and vault/1 failed with same error. /solutions. qa.canonical. com/testruns/ 6706f1f1- daf2-4183- a226-86fc483006 7f
https:/
Error logs, which repeat for 5 hr. 1.juju- log server.go:325 certificates:244: Opening vault port 1.juju- log server.go:325 certificates:244: Invoking reactive handler: reactive/ vault_handlers. py:360: mysql_setup 1.juju- log server.go:325 certificates:244: Invoking reactive handler: reactive/ vault_handlers. py:391: database_ not_ready 1.juju- log server.go:325 certificates:244: Invoking reactive handler: reactive/ vault_handlers. py:481: cluster_ connected 1.juju- log server.go:325 certificates:244: Invoking reactive handler: reactive/ vault_handlers. py:697: send_vault_ url_and_ ca 1.juju- log server.go:325 certificates:244: Use of remote_binding in publish_url is deprecated. See LP Bug #1895185 1.juju- log server.go:325 certificates:244: Invoking reactive handler: reactive/ vault_handlers. py:743: prime_assess_ status 1.juju- log server.go:325 certificates:244: Invoking reactive handler: reactive/ vault_handlers. py:1120: sync_cert_ from_cache 1.juju- log server.go:325 certificates:244: Hook error: juju/agents/ unit-vault- 1/.venv/ lib/python3. 10/site- packages/ urllib3/ connectionpool. py", line 449, in _make_request raise_from( e, None) juju/agents/ unit-vault- 1/.venv/ lib/python3. 10/site- packages/ urllib3/ connectionpool. py", line 444, in _make_request response = conn.getresponse() python3. 10/http/ client. py", line 1375, in getresponse begin() python3. 10/http/ client. py", line 318, in begin python3. 10/http/ client. py", line 279, in _read_status fp.readline( _MAXLINE + 1), "iso-8859-1") python3. 10/socket. py", line 705, in readinto recv_into( b)
2024-04-26 12:24:12 DEBUG unit.vault/
2024-04-26 12:24:12 INFO unit.vault/
2024-04-26 12:24:12 INFO unit.vault/
2024-04-26 12:24:12 INFO unit.vault/
2024-04-26 12:24:12 INFO unit.vault/
2024-04-26 12:24:12 WARNING unit.vault/
2024-04-26 12:24:12 INFO unit.vault/
2024-04-26 12:24:12 INFO unit.vault/
2024-04-26 12:24:43 ERROR unit.vault/
Traceback (most recent call last):
File "/var/lib/
six.
File "<string>", line 3, in raise_from
File "/var/lib/
httplib_
File "/usr/lib/
response.
File "/usr/lib/
version, status, reason = self._read_status()
File "/usr/lib/
line = str(self.
File "/usr/lib/
return self._sock.
TimeoutError: timed out
During handling of the above exception, another exception occurred:
Traceback (most recent call last): juju/agents/ unit-vault- 1/.venv/ lib/python3. 10/site- packages/ requests/ adapters. py", line 439, in send juju/agents/ unit-vault- 1/.venv/ lib/python3. 10/site- packages/ urllib3/ connectionpool. py", line 787, in urlopen juju/agents/ unit-vault- 1/.venv/ lib/python3. 10/site- packages/ urllib3/ util/retry. py", line 550, in increment type(error) , error, _stacktrace) juju/agents/ unit-vault- 1/.venv/ lib/python3. 10/site- packages/ urllib3/ packages/ six.py" , line 770, in reraise juju/agents/ unit-vault- 1/.venv/ lib/python3. 10/site- packages/ urllib3/ connectionpool. py", line 703, in urlopen
File "/var/lib/
resp = conn.urlopen(
File "/var/lib/
retries = retries.increment(
File "/var/lib/
raise six.reraise(
File "/var/lib/
raise value
File "/var/lib/
httplib...