[
https://issues.apache.org/jira/browse/HDDS-9013?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17750948#comment-17750948
]
Sammi Chen commented on HDDS-9013:
----------------------------------
The problem is SCM4's certificate is signed by root CA-3, and leader SCM3's
certificate is signed by CA-4. SCM4 doesn't have the root CA-4 locally during
the it's startup, so it cannot verify SCM3's certificate.
> Fetch root CA certificate list during SCM startup
> -------------------------------------------------
>
> Key: HDDS-9013
> URL: https://issues.apache.org/jira/browse/HDDS-9013
> Project: Apache Ozone
> Issue Type: Sub-task
> Affects Versions: 1.4.0
> Reporter: Attila Doroszlai
> Assignee: Sammi Chen
> Priority: Major
>
> {code:title=https://github.com/adoroszlai/ozone-build-results/blob/master/2023/07/13/24228/acceptance-HA-secure/output.log}
> Port 9894 is available on scm4.org
> ...
> ozone admin scm roles | grep scm4.org hasn't succeed yet
> Timed out waiting on ozone admin scm roles | grep scm4.org to be successful
> ...
> ERROR: Test execution of ozonesecure-ha/test-root-ca-rotation.sh is FAILED!!!!
> {code}
> CC [~Sammi], [~sgal]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
