Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fail to start sample workspaces when using a custom TLS certificate #19309

Closed
l0rd opened this issue Mar 17, 2021 · 10 comments
Closed

Fail to start sample workspaces when using a custom TLS certificate #19309

l0rd opened this issue Mar 17, 2021 · 10 comments
Labels
area/plugins kind/bug Outline of a bug - must adhere to the bug report template. severity/P1 Has a major impact to usage or development of the system.

Comments

@l0rd
Copy link
Contributor

l0rd commented Mar 17, 2021

Describe the bug

Starting any getting started workspace fails with the following message.

image

I have deployed Che on minikube. I am using a custom TLS certificate for Che endpoints.

That means that I have:

Che version

nightly

Steps to reproduce

Deploy Che on minikube using chectl
Configure Che to use a custom certificate as described here
Start the Java maven sample

Runtime

minikube

minikube version: v1.17.1
commit: 043bdca07e54ab6e4fc0457e3064048f34133d7e

Installation method

$  chectl update next && \
   chectl server:deploy \
       -p minikube

Environment

macOS
@l0rd l0rd added the kind/bug Outline of a bug - must adhere to the bug report template. label Mar 17, 2021
@che-bot che-bot added the status/need-triage An issue that needs to be prioritized by the curator responsible for the triage. See https://github. label Mar 17, 2021
@l0rd l0rd changed the title Fail to starting samples when Che is setup using a custom TLS certificate Fail to start sample workspaces when using a custom TLS certificate Mar 17, 2021
@l0rd l0rd mentioned this issue Mar 17, 2021
Closed
@l0rd l0rd added area/editor/theia Issues related to the che-theia IDE of Che severity/P1 Has a major impact to usage or development of the system. and removed status/need-triage An issue that needs to be prioritized by the curator responsible for the triage. See https://github. labels Mar 17, 2021
@l0rd
Copy link
Contributor Author

l0rd commented Mar 17, 2021

Related to #19168

@l0rd l0rd mentioned this issue Mar 18, 2021
Open
@l0rd
Copy link
Contributor Author

l0rd commented Mar 18, 2021

Looks like a duplicate of #19120 but that got closed and I can still reproduce the problem using nightly. cc @vitaliy-guliy

@azatsarynnyy
Copy link
Member

I'm labeling it as area/plugins since the related functionality comes from the Workspace Plug-in.

@azatsarynnyy azatsarynnyy added area/plugins and removed area/editor/theia Issues related to the che-theia IDE of Che labels Mar 18, 2021
@azatsarynnyy
Copy link
Member

I've noticed that only *.crt files are taken into account when reading it from the /public-certs folder:
https://github.com/eclipse/che-theia/blob/d4a190ebb3e5b42ad45f4190018b693e26055449/plugins/workspace-plugin/src/ca-cert.ts#L49
I believe it could be fixed by reading all the *.pem files as well, e.g. /public-certs/custom-certs.rootCA.pem.

@azatsarynnyy azatsarynnyy mentioned this issue Mar 18, 2021
Closed
22 tasks
@mmorhun
Copy link
Contributor

mmorhun commented Mar 18, 2021

@azatsarynnyy I've run into the same problem, so created PR: eclipse-che/che-theia#1038

@azatsarynnyy
Copy link
Member

Thanks @mmorhun!
@l0rd could you check if your issue is reproducible with the following che-theia version:

components:
  - reference: https://raw.githubusercontent.com/chepullreq4/pr-check-files/master/che-theia/pr-1038/simple/che-theia-editor.yaml
    type: cheEditor

It's based on Mykola's PR

@vitaliy-guliy
Copy link
Contributor

Looks like a duplicate of #19120 but that got closed and I can still reproduce the problem using nightly. cc @vitaliy-guliy

We should take into account all the certificates, that are in /public-certs directory.
Thanks to @mmorhun for the fixup.

@l0rd
Copy link
Contributor Author

l0rd commented Mar 19, 2021

Now it's hanging while trying to clone the project: I do not get any error but the project doesn't get cloned.

Mar-19-2021 01-18-36-2

@vitaliy-guliy
Copy link
Contributor

Trying to reproduce it as it described in the description.

This was referenced Mar 24, 2021
Closed
Merged
@vitaliy-guliy
Copy link
Contributor

Should be working now

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/plugins kind/bug Outline of a bug - must adhere to the bug report template. severity/P1 Has a major impact to usage or development of the system.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@l0rd @azatsarynnyy @vitaliy-guliy @mmorhun @che-bot