Open brainstorm opened 10 years ago
Is that from keystone-manage ssl_setup being run?
The ssl part with keystone is definitely a little brittle. I've never been happy with how I've got it setup, not very idempotent, also the way keystone does it changes fairly often.
You could try just keystone ssl_setup and see what is going on there and paste the errors into this ticket. :)
Yes, sorry I got distracted and did not paste the actual command and output:
# openssl ca -batch -out /etc/keystone/ssl/certs/signing_cert.pem
-config /etc/keystone/ssl/certs/openssl.conf -days 3650d -cert /etc/keystone/ssl/certs/ca.pem
-keyfile /etc/keystone/ssl/private/cakey.pem -infiles /etc/keystone/ssl/certs/req.pem
Using configuration from /etc/keystone/ssl/certs/openssl.conf
CA certificate and CA private key do not match
139782758885024:error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch:x509_cmp.c:330:
Ok I will try to replicate that. Not sure if I can, but I'll give it a shot. :)
On a clean run, again on bare metal, not blaming your excellent Vagrant/Virtualbox approach