Labca crashed by itself - no certificate #208
Description
Hello,
suddently (no updates, nothing done, it was just an "idle" LabCA) i found out from my proxmox not being able to update its cert that my labca install was no longer reachable.
It seems the issue is in the nginx container, and i can see this:
/docker-entrypoint.sh: /docker-entrypoint.d/ is not empty, will attempt to perform configuration
/docker-entrypoint.sh: Looking for shell scripts in /docker-entrypoint.d/
/docker-entrypoint.sh: Launching /docker-entrypoint.d/10-listen-on-ipv6-by-default.sh
10-listen-on-ipv6-by-default.sh: info: /etc/nginx/conf.d/default.conf is not a file or does not exist
/docker-entrypoint.sh: Sourcing /docker-entrypoint.d/15-local-resolvers.envsh
/docker-entrypoint.sh: Launching /docker-entrypoint.d/20-envsubst-on-templates.sh
/docker-entrypoint.sh: Launching /docker-entrypoint.d/30-tune-worker-processes.sh
/docker-entrypoint.sh: Configuration complete; ready for start up
30 19:41:29 [emerg] 1#1: cannot load certificate "/etc/nginx/ssl/labca_cert.pem": BIO_new_file() failed (SSL: error:80000002:system library::No such file or directory:calling fopen(/etc/nginx/ssl/labca_cert.pem, r) error:10000080:BIO routines::no such file)
nginx: [emerg] cannot load certificate "/etc/nginx/ssl/labca_cert.pem": BIO_new_file() failed (SSL: error:80000002:system library::No such file or directory:calling fopen(/etc/nginx/ssl/labca_cert.pem, r) error:10000080:BIO routines::no such file)
but this is probably coming from the labca-control since i can see this
req: Can't open "labca_key.pem" for writing, No such file or directory
honestly, this happened some days ago, but i thought it was a "strange" error and simply started back from a recent proxmox backup. But today it's broken again.
I have no clue where to start from..
This is the installation:
root@LabCA:~# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
c0aa923b3e9b ghcr.io/hakwerk/labca-boulder:latest "labca/entrypoint.sh" 3 weeks ago Up 25 hours 0.0.0.0:4001-4003->4001-4003/tcp, [::]:4001-4003->4001-4003/tcp labca-boulder-1
cca072f1faad hashicorp/consul:1.15.4 "docker-entrypoint.s…" 3 weeks ago Up 25 hours 8300-8302/tcp, 8500/tcp, 8301-8302/udp, 8600/tcp, 8600/udp labca-bconsul-1
1e5a4b897c75 nginx:latest "/docker-entrypoint.…" 3 weeks ago Restarting (1) 39 seconds ago labca-nginx-1
c5ab3f131cd2 ghcr.io/hakwerk/labca-gui:latest "bin/labca-gui" 3 weeks ago Up 25 hours 3000/tcp labca-gui-1
3517e7320e6f ghcr.io/hakwerk/labca-control:latest "./control.sh" 3 weeks ago Restarting (1) 26 seconds ago labca-control-1
d8c6b2dca972 redis:6.2.7 "docker-entrypoint.s…" 3 weeks ago Up 25 hours 6379/tcp labca-bredis-1
21bbee300f70 ghcr.io/pkimetal/pkimetal:v1.19.0 "/app/pkimetal" 3 weeks ago Up 25 hours labca-bpkimetal-1
0976dd67bad2 mariadb:10.5 "docker-entrypoint.s…" 3 weeks ago Up 25 hours 3306/tcp labca-bmysql-1
b495fa99d8c6 portainer/agent:2.33.2 "./agent" 4 weeks ago Up 25 hours 0.0.0.0:9001->9001/tcp, [::]:9001->9001/tcp portainer_agent
Thanks