Project

General

Profile

Actions
Copy link

Bug #48177

closed

teuthology issued x509 certificates lack "subjectAlName", generating tons of duplicated warnings

Added by Marcus Watts over 3 years ago. Updated over 3 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Marcus Watts
Category:
-
% Done:

0%

Source:
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
teuthology
Crash signature (v1):
Crash signature (v2):

Description

Lines like these appear over and over in the teuthology logs:

2020-11-05T17:51:42.194 INFO:teuthology.orchestra.run.lossinia.stderr:s3tests_boto3.functional.test_headers.test_object_create_bad_contenttype_empty ... /home/ubuntu/cephtest/s3-tests/virtualenv/lib/python3.6/site-packages/urllib3/connection.py:395: SubjectAltNameWarning: Certificate for lossinia.eng.arb.redhat.com has no `subjectAltName`, falling back to check for a `commonName` for now. This feature is being removed by major browsers and deprecated by RFC 2818. (See https://github.com/urllib3/urllib3/issues/497 for details.)
2020-11-05T17:51:42.194 INFO:teuthology.orchestra.run.lossinia.stderr: SubjectAltNameWarning,

(ignore the host names, this is from a toy teuthology setup.)

The resulting 2700+ messages make it hard to spot real problems in the log.

The "openssl_keys" task creates these certificates. I have a fix for this, and I'll make a PR with it as soon as I update it with the tracker number from here.

Actions
Copy link
 #2

Updated by Nathan Cutler over 3 years ago

  • Status changed from New to Fix Under Review
  • Assignee set to Marcus Watts
Actions
Copy link
 #3

Updated by Kefu Chai over 3 years ago

  • Status changed from Fix Under Review to Resolved
Actions
Copy link

Also available in: Atom PDF