Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-14666

Service CA CA bundle generated signer

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not a Bug
    • Icon: Undefined Undefined
    • None
    • 4.10
    • service-ca
    • None
    • Moderate
    • No
    • False
    • Hide

      None

      Show
      None

      Description of problem:

      For some reason, service CA ended up with two signers in the CA bundle that have the same subject but different serials.

      Version-Release number of selected component (if applicable):

      4.10.55

      How reproducible:

      It happened at least once

      Steps to Reproduce:

      1. Do nothing special
2.
3.

      Actual results:

      Service CA bundle has 2 signers with same subject and different dates and serials.

      Expected results:

      No duplicated signer.

      Additional info:

      This was reported already in very old OCP 4.y versions (e.g. https://bugzilla.redhat.com/show_bug.cgi?id=1920974). However, those errors were fixed around 4.6 and the cluster was in a much later version already when the duplicated signers were created.
This means that this is a NEW bug with similar symptoms (but likely a different root cause).

            slaznick@redhat.com Stanislav Láznička
            rhn-support-palonsor Pablo Alonso Rodriguez
            Xingxing Xia Xingxing Xia
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated:
              Resolved: