nagios-charmers team mailing list archive

Thread
Date

[Bug 1903353] Re: Nagios charm needs to handle self-signed SSL certificate expiration.

To: nagios-charmers@xxxxxxxxxxxxxxxxxxx
From: Paul Goins <1903353@xxxxxxxxxxxxxxxxxx>
Date: Fri, 06 Nov 2020 20:22:09 -0000
Reply-to: Bug 1903353 <1903353@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

The certificate is generated by charmhelpers, and it looks like the
expiration is hard-coded to 365 days.  If this expires, there is no
charmed action to manage this.

The workaround is likely as follows:

* Delete the /etc/ssl/certs/<ip>.pem and /etc/ssl/private/<ip>.key files
* Run the config-changed hook by hand.

-- 
You received this bug notification because you are a member of Nagios
Charm developers, which is subscribed to Nagios Charm.
https://bugs.launchpad.net/bugs/1903353

Title:
  Nagios charm needs to handle self-signed SSL certificate expiration.

Status in Nagios Charm:
  New

Bug description:
  On a customer cloud using the self-signed certificate option, the
  certificate has expired.  However, the charm does not appear to have
  anything in place for dealing with this.  It creates the certificate
  one and only one time.

To manage notifications about this bug go to:
https://bugs.launchpad.net/charm-nagios/+bug/1903353/+subscriptions

References

[Bug 1903353] [NEW] Nagios charm needs to handle self-signed SSL certificate expiration.
From: Paul Goins, 2020-11-06