[HDDS-9044] [ozone-cert-rotation] Invalid exit code from ozone cert clean command - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Resolved
Priority: Critical
Resolution: Resolved
Affects Version/s: 1.4.0
Fix Version/s: None
Component/s: Ozone Manager
Labels:
- pki

Target Version/s:

1.4.0

Description

Ozone cert clean cli usage is not user friendly.
Below are the reasons :

Runs without kerberos authentication check

[root@quasar-ewnsjs-2 ~]# klist
klist: No credentials cache found (filename: /tmp/krb5cc_0)
[root@quasar-ewnsjs-2 ~]# /opt/cloudera/parcels/CDH/bin/ozone admin cert clean --db=/var/lib/hadoop-ozone/scm/data789712
[root@quasar-ewnsjs-2 ~]#

It ask for db-path which can be identified with the help of ozone.scm.db.dirs config.
Command needs to be run from scm node and it cannot be run from a client node

There is no response on passing invalid path with invalid exit code.

root@st-ozone-0mrob1-k26w9:/hwqe/hadoopqe# /opt/cloudera/parcels/CDH/bin/ozone admin cert clean --db=/tmp
root@st-ozone-0mrob1-k26w9:/hwqe/hadoopqe# echo $?
0

Attachments

Issue Links

is fixed by

HDDS-9042 [ozone-cert-rotation][ozone] Multiple InternalCA were created

Resolved

Activity

People

Assignee:: Szabolcs Gál

Reporter:: Soumitra Sulav

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 19/Jul/23 19:03

Updated:: 14/Aug/23 08:39

Resolved:: 14/Aug/23 08:39