Uploaded image for project: 'netconf'
  1. netconf
  2. NETCONF-650

Creating a TLS mount w/o a key in keystore results in karaf.log filling up (not logging at ERROR, gating gets skipped)

    XMLWordPrintable

Details

    • Bug
    • Status: Resolved
    • Medium
    • Resolution: Cannot Reproduce
    • Neon SR1
    • None
    • netconf
    • None

    Description

      This is an operational issue that can result in all disk space filling up on the ODL VM.

      Mounting a new netconf-over-TLS mountpoint without preconfiguring the keystore correctly results in extremely fast fail+remounts happening, which then fills up the logs and potentially kills the controller.

      See karaf.log.2 (attached)

      2019-11-06T12:16:50,920 | INFO | nioEventLoopGroupCloseable-3-5 | AbstractNetconfSessionNegotiator | 316 - org.opendaylight.netconf.netty-util - 1.6.1 | Unexpected error during negotiation
      java.lang.IllegalStateException: java.security.KeyStoreException: No keystore private key found

      Fixes in Neon, Sodium, and Master/Mg are desirable (ONAP intends to release on Neon).

      Thanks

      Attachments

        1. karaf.log.2
          16.00 MB
        2. files650.zip
          33 kB
        3. [NETCONF-650] Steps to reproduce.docx
          18 kB
        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            ivanm1996 Ivan Martiniak
            malloc_failed Jeff Hartley
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: