Uploaded image for project: 'National Data Service'
  1. National Data Service
  2. NDS-782

TLS Cert Deploy Issue

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Duplicate
    • Icon: Normal Normal
    • None
    • Labs Workbench - Beta
    • Development
    • None

    Description

      Brand-new cluster deployment fails at create ndslabs tls secret:

      TASK [cluster-addons : NDSLabs TLS Secret| create ndslabs-tls-secret - kube-system] ***
      fatal: [master1]: FAILED! =>

      {"changed": true, "cmd": ["/opt/bin/kubectl", "create", "secret", "generic", "ndslabs-tls-secret", "--from-file=tls.crt=/tmp/ndslabs.cert", "--from-file=tls.key=/tmp/ndslabs.key", "--namespace=kube-system"], "delta": "0:00:00.070812", "end": "2017-03-10 15:45:55.689133", "failed": true, "rc": 1, "start": "2017-03-10 15:45:55.618321", "stderr": "error: error reading /tmp/ndslabs.cert: no such file or directory", "stdout": "", "stdout_lines": [], "warnings": []}

      to retry, use: --limit @/root/playbooks/ndslabs-k8s-install.retry

      On master: there is no file /tmp/ndslabs.key, there is however a /tmp/dr.key. Cluster name is dr.

      Could be related to recent change to tls secret naming. The test-cases for that change passed, but did not include full-cluster redeploy and may have been inadequate - or perhaps dr-151-ncsa did not get a required update?

      Gliffy Diagrams

        Attachments

          Activity

            People

              lambert8 Sara Lambert
              raila David Raila
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Tasks