Actions
Bug #42924
openradosgw-admin fail to connect to radosgw over https
Status:
Triaged
Priority:
Normal
Assignee:
-
Target version:
-
% Done:
0%
Source:
Development
Tags:
httpclient ssl
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
when setting radosgw frontend to use https, radosgw-admin commands that communicate with the gateway over https, fail due to certificate verification failure.
E.g
bin/radosgw-admin realm pull -c ceph.conf --rgw-realm r --url https://localhost:8000 --access-key xxx --secret xxx --debug-rgw=20 2019-11-21T10:51:57.608+0200 7f3f4315c080 20 > HTTP_DATE -> Thu Nov 21 08:51:57 2019 2019-11-21T10:51:57.608+0200 7f3e5affd700 20 reqs_thread_entry: start 2019-11-21T10:51:57.608+0200 7f3f4315c080 10 get_canon_resource(): dest=/admin/realm 2019-11-21T10:51:57.608+0200 7f3f4315c080 10 generated canonical header: GET Thu Nov 21 08:51:57 2019 /admin/realm 2019-11-21T10:51:57.608+0200 7f3f4315c080 15 generated auth header: ... 2019-11-21T10:51:57.608+0200 7f3f4315c080 20 sending request to https://localhost:8000/admin/realm?name=r 2019-11-21T10:51:57.608+0200 7f3f4315c080 20 register_request mgr=0x558758fa7990 req_data->id=0, curl_handle=0x5587590dfa20 2019-11-21T10:51:57.608+0200 7f3e5affd700 20 link_request req_data=0x5587590e00c0 req_data->id=0, curl_handle=0x5587590dfa20 request failed: 2019-11-21T10:51:57.631+0200 7f3e5affd700 20 ERROR: msg->data.result=60 req_data->id=0 http_status=0(5) Input/output error 2019-11-21T10:51:57.631+0200 7f3e5affd700 20 ERROR: curl error: SSL peer certificate or SSH remote key was not OK
radosgw-admin should have a flag indicating the location of the CA file, and/or a flag indicating not to validate server certificate.
Updated by Casey Bodley over 4 years ago
- Status changed from New to Triaged
- Assignee set to Yuval Lifshitz
Actions