Tero Marttila

Anything interesting in `journalctl -u docker.service` from the same time? Sounds like a Docker daemon error.

Based on those logs, it looks like the `Docker::Image.create` may have failed with `raise Docker::Error::ServerError, 'error parsing HTTP 400 response body: unexpected end of JSON input: ""'`. It looks like...

Unable to repro directly on either a local 1.5.0.dev master or a Kontena Cloud 1.4.3 master + nodes... the certs generated by `kontena certificate request` have the trailing newlines after...

The cert bundle is generated on the server, per [`Rpc::ServicePodSerializer#build_secrets`](https://github.com/kontena/kontena/blob/6e2f627b009f7e27e4110b72c0c08f7a0772bbcd/server/app/serializers/rpc/service_pod_serializer.rb#L77) => [`Certificate#bundle`](https://github.com/kontena/kontena/blob/master/server/app/models/certificate.rb#L32). That concatenates the `certificate`, `chain` and (decrypted) `private_key` fields, which are thus supposed to contain trailing newlines. Those...

This looks like a bug in the `db/migrations/30_certificates_from_secrets.rb`. It is explicitly stripping the trailing newlines from the `-----END CERTIFICATE-----` lines, and the specs are also doing the same for the...

Preventative validation in #3176... options for actually fixing this issue: * release a new migration to fix those migrated certificates post-facto * add some kind of post-validation to fail the...

TBH not entirely sure if it's really even worth trying to fix the invalid certs created by the 1.4 migration... the migrated LE cert secrets will only be valid for...

The vagrant plugin with `DOMAINS=kontena.local` is actually buggy, that just gets ignored as an invalid configuration. It should be `Domains=kontena.local`. FWIW, all of those are then also missing the `Domains=$GRID.kontena.local...

Not really sure how to fix this without changing the server API to have the CLI poll the domain authorization request status, instead of having the server timeout for it....

Looks like the flaky specs are failing with timeouts caused by a race with the `MongoPubsub#initialize` -> `async.tail!` now that a new pubsub actor is started for each spec: the...