You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@trafficcontrol.apache.org by "Steve Malenfant (JIRA)" <ji...@apache.org> on 2017/05/23 14:38:04 UTC
[jira] [Created] (TC-351) Generate new SSL keys fails after a while
Steve Malenfant created TC-351:
----------------------------------
Summary: Generate new SSL keys fails after a while
Key: TC-351
URL: https://issues.apache.org/jira/browse/TC-351
Project: Traffic Control
Issue Type: Bug
Components: Traffic Ops
Affects Versions: 1.8.0
Environment: Traffic Ops 1.8
openssl-1.0.1e
Reporter: Steve Malenfant
Priority: Minor
After some Traffic Ops runtime (few days), we noticed that we can't generate certificate anymore and receiving these messages in the log:
{code}
[2017-05-23 12:32:11,175] [DEBUG] Routing to controller "UI::SslKeys" and action "create".
[2017-05-23 12:32:11,572] [WARN] SSL keys for 'test_deliveryservice' could not be created. Response was Error creating key and csr. Result is -1
[2017-05-23 12:32:11,573] [DEBUG] 302 Found (0.399329s, 2.504/s).
{code}
The CSR and KEY is created and valid in /var/tmp.
Issuing a "service traffic_ops restart" fixes the issue.
The code which seems to be failing is here :
{code}
#generate key and csr
my $result = UI::Utils->exec_command(
"openssl req -nodes -newkey rsa:2048 -keyout $TMP_LOCATION/$hostname.key -out $TMP_LOCATION/$hostname.csr -subj /C=\"$country\"/ST=\"$state\"/L=\"$city\"/O=\"$org\"/OU=\"$unit\"/CN=$hostname"
);
if ( $result != 0 ) {
$response = { _rc => 400, _content => "Error creating key and csr. Result is $result" };
return $response;
}
{code}
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)