-
Notifications
You must be signed in to change notification settings - Fork 1.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Host is still unsecured when provisionCertificate api is called #2763
Comments
This was referenced Jul 24, 2018
@borisstoyanov I do not think so, that small fix that I did was for the NPE issue. The VM lifecycle tests have already been failing before and I think it might be due to regressions in provisionCertificate API itself that need looking into. Perhaps @rhtyd can help us here since he authored this feature. |
rohityadavcloud
added a commit
to shapeblue/cloudstack
that referenced
this issue
Jul 24, 2018
This fixes apache#2763 by moving a post cert-renewal class for kvm plugin/hypervisor to src/main/java. The regression is due to change in file-system layout due to maven standard refactoring on master and issue was not caught during forward-merging of a PR from 4.11 branch. Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com>
12 tasks
rohityadavcloud
added a commit
that referenced
this issue
Jul 26, 2018
) This fixes #2763 by moving a post cert-renewal class for kvm plugin/hypervisor to src/main/java. The regression is due to change in file-system layout due to maven standard refactoring on master and issue was not caught during forward-merging of a PR from 4.11 branch. Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com>
12 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
SUMMARY
When provisionCertificate api is executed the host ends up in unsecured state, instead should be secured
ISSUE TYPE
COMPONENT NAME
CLOUDSTACK VERSION
CONFIGURATION
ca.framework.cert.automatic.renewal = true
ca.plugin.root.allow.expired.cert = true
ca.plugin.root.auth.strictness = false
OS / ENVIRONMENT
NA
STEPS TO REPRODUCE
EXPECTED RESULTS
ACTUAL RESULTS
agent_unsecured.txt
unsecured_connection.txt
The text was updated successfully, but these errors were encountered: