[tbs.buildpack-admission-service] throw error if unable to load ssl cert
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	dcaro
	Feb 2 2023, 12:34 PM

Description

Currently if there's no ssl certificate for the server, it starts up, shows an error message, and listens to the port,
but fails to handle any connections:

dcaro@vulcanus$ go run .
INFO[0000] &{0.0.0.0:8080 /etc/webhook/certs/cert.pem /etc/webhook/certs/key.pem [harbor.toolforge.org harbor.toolsbeta.wmflabs.org] [system:serviceaccount:tekton-pipelines:tekton-pipelines-controller] [paketobuildpacks/builder:base gcr.io/buildpacks/builder:v1 docker-registry.tools.wmflabs.org/toolforge-bullseye0-builder:latest] true nobuildid}
ERRO[0000] open /etc/webhook/certs/cert.pem: no such file or directory
# curl https://127.0.0.1:8080
2023/02/02 13:22:22 http: TLS handshake error from 127.0.0.1:43970: tls: certificate private key (<nil>) does not implement crypto.Signer

This task is to stop the execution instead with a return code of 1

Event Timeline

dcaro triaged this task as Medium priority.Feb 2 2023, 12:34 PM

dcaro created this task.

dcaro added a project: Toolforge Build Service.

• nskaggs removed a project: cloud-services-team (FY2022/2023-Q3).Apr 28 2023, 1:54 PM

https://github.com/toolforge/buildpack-admission-controller/commit/445d361d55fa97eb9c397102823fce4b64d29f96

[tbs.buildpack-admission-service] throw error if unable to load ssl certClosed, ResolvedPublicActions

Description

Event Timeline

[tbs.buildpack-admission-service] throw error if unable to load ssl cert
Closed, ResolvedPublic
Actions