Bug 1412799
| Summary: | HAProxy re-encrypt route returns 503 when certificate is expired | ||
|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Sten Turpin <sten> |
| Component: | Networking | Assignee: | Ben Bennett <bbennett> |
| Networking sub component: | router | QA Contact: | zhaozhanqi <zzhao> |
| Status: | CLOSED NOTABUG | Docs Contact: | |
| Severity: | medium | ||
| Priority: | medium | CC: | aos-bugs, bperkins, ramr, sten |
| Version: | 3.3.1 | ||
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | x86_64 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2017-01-30 19:24:21 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Sten Turpin
2017-01-12 20:03:48 UTC
Is there anything in the router pod log? Ram, do the extended validation changes we are backporting fix this? Depends on where the error is coming from. @Sten, what does $ oc get route <route-name> -o yaml say? Does it say something like extended validation failed for the certificate. If that's the case, @Ben then this is fixed with the backports for the extended validation changes to 3.2 and 3.3 Otherwise, its something else we need to look at. Thx Closing due to inactivity. If it is still happening, please re-open and provide the requested information. We haven't seen this issue since ~3.3 |