Project

General

Profile

Tâche #23870

Scénario #23873: Corrections EOLE 2.7.0

AmonEcole 2.7.0 : la clé EOLE n'est pas copiée dans les conteneurs

Added by Joël Cuissinat over 4 years ago. Updated over 4 years ago.

Status:
Fermé
Priority:
Normal
Start date:
05/14/2018
Due date:
% Done:

100%

Estimated time:
3.00 h
Spent time:
Remaining (hours):
0.0

Description

root@amonecole:~# ls /etc/ssl/certs/eole.crt /etc/ssl/private/eole.key 
/etc/ssl/certs/eole.crt  /etc/ssl/private/eole.key
root@amonecole:~# CreoleRun "ls /etc/ssl/certs/eole.crt /etc/ssl/private/eole.key 2>&1" reseau 
ls: impossible d'accéder à '/etc/ssl/private/eole.key': Aucun fichier ou dossier de ce type
/etc/ssl/certs/eole.crt

Ce soucis empêche notamment apache2 de démarrer dans le conteneur reseau :

root@amonecole:~# CreoleRun "service apache2 status" reseau
● apache2.service - The Apache HTTP Server
   Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled)
  Drop-In: /lib/systemd/system/apache2.service.d
           └─apache2-systemd.conf
   Active: inactive (dead)

mai 09 17:03:35 reseau systemd[1]: Failed to start The Apache HTTP Server.
mai 09 17:11:07 reseau systemd[1]: apache2.service: Failed to reset devices.list: Operation not permitted
mai 09 17:11:07 reseau systemd[1]: Starting The Apache HTTP Server...
mai 09 17:11:07 reseau apachectl[6641]: AH00526: Syntax error on line 7 of /etc/apache2/sites-enabled/Vhost-ssl.conf:
mai 09 17:11:07 reseau apachectl[6641]: SSLCertificateKeyFile: file '/etc/ssl/private/eole.key' does not exist or is empty
mai 09 17:11:07 reseau apachectl[6641]: Action 'start' failed.
mai 09 17:11:07 reseau apachectl[6641]: The Apache error log may have more information.
mai 09 17:11:07 reseau systemd[1]: apache2.service: Control process exited, code=exited status=1
mai 09 17:11:07 reseau systemd[1]: apache2.service: Failed with result 'exit-code'.
mai 09 17:11:07 reseau systemd[1]: Failed to start The Apache HTTP Server.

Le code à modifier serait dans la fonction certificates() de /usr/lib/python2.7/dist-packages/creole/reconfigure.py

Associated revisions

Revision d01ea21f (diff)
Added by Fabrice Barconnière over 4 years ago

Private keys were not copied in containers while reconfigure

ref #23870

History

#1 Updated by Joël Cuissinat over 4 years ago

  • Parent task changed from #23742 to #23873

#2 Updated by Fabrice Barconnière over 4 years ago

  • Status changed from Nouveau to En cours
  • Start date set to 05/14/2018

#3 Updated by Fabrice Barconnière over 4 years ago

  • Assigned To set to Fabrice Barconnière

#4 Updated by Fabrice Barconnière over 4 years ago

  • % Done changed from 0 to 100
  • Remaining (hours) changed from 3.0 to 0.5

#5 Updated by Scrum Master over 4 years ago

  • Status changed from En cours to Résolu

#6 Updated by Joël Cuissinat over 4 years ago

  • Status changed from Résolu to Fermé
  • Remaining (hours) changed from 0.5 to 0.0

Le fichier est bien présent dans tous les conteneurs et le service apache est fonctionnel :

root@amonecole:~# CreoleRun "ls /etc/ssl/certs/eole.crt /etc/ssl/private/eole.key 2>&1" all
Exécution de la commande [ls /etc/ssl/certs/eole.crt /etc/ssl/private/eole.key 2>&1] dans le conteneur reseau

/etc/ssl/certs/eole.crt
/etc/ssl/private/eole.key

Exécution de la commande [ls /etc/ssl/certs/eole.crt /etc/ssl/private/eole.key 2>&1] dans le conteneur internet

/etc/ssl/certs/eole.crt
/etc/ssl/private/eole.key

Exécution de la commande [ls /etc/ssl/certs/eole.crt /etc/ssl/private/eole.key 2>&1] dans le conteneur bdd

/etc/ssl/certs/eole.crt
/etc/ssl/private/eole.key

Exécution de la commande [ls /etc/ssl/certs/eole.crt /etc/ssl/private/eole.key 2>&1] dans le conteneur partage

/etc/ssl/certs/eole.crt
/etc/ssl/private/eole.key

Also available in: Atom PDF