From 861ea99cc72b9b3d114dc0630d85e8ebe1005896 Mon Sep 17 00:00:00 2001 From: Phil Porada Date: Wed, 10 Jul 2024 15:53:25 -0400 Subject: [PATCH] ca: Output issuer configuration details at startup (#7582) As an operator, it's helpful to know what issuers a given CA has at startup time. We already log the default issuer profile for instance. Related to https://github.com/letsencrypt/boulder/issues/7469 --- cmd/boulder-ca/main.go | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/cmd/boulder-ca/main.go b/cmd/boulder-ca/main.go index 05666242641..022f5c9df3b 100644 --- a/cmd/boulder-ca/main.go +++ b/cmd/boulder-ca/main.go @@ -188,11 +188,13 @@ func main() { cmd.FailOnError(err, "Failed to load CT Log List") } + clk := cmd.Clock() issuers := make([]*issuance.Issuer, 0, len(c.CA.Issuance.Issuers)) for _, issuerConfig := range c.CA.Issuance.Issuers { - issuer, err := issuance.LoadIssuer(issuerConfig, cmd.Clock()) + issuer, err := issuance.LoadIssuer(issuerConfig, clk) cmd.FailOnError(err, "Loading issuer") issuers = append(issuers, issuer) + logger.Infof("Loaded issuer: name=[%s] keytype=[%s] nameID=[%v] isActive=[%t]", issuer.Name(), issuer.KeyType(), issuer.NameID(), issuer.IsActive()) } if c.CA.Issuance.DefaultCertificateProfileName == "" { @@ -223,8 +225,6 @@ func main() { tlsConfig, err := c.CA.TLS.Load(scope) cmd.FailOnError(err, "TLS config") - clk := cmd.Clock() - conn, err := bgrpc.ClientSetup(c.CA.SAService, tlsConfig, scope, clk) cmd.FailOnError(err, "Failed to load credentials and create gRPC connection to SA") sa := sapb.NewStorageAuthorityClient(conn)