Dynamic Host Catalogs on AWS not working since 0.9.0 upgrade

ThomasKinow · July 1, 2022, 1:44pm

Hello,

Since we upgrade to boundary 0.9.0 (from 0.8.1) dynamic host catalogs on AWS seems to be broken. https://learn.hashicorp.com/tutorials/boundary/aws-host-catalogs?in=boundary/configuration was followed to configure dynamic host catalogs on AWS. From AWS CloudTrail, since the upgrade, we do not see anymore calls to ec2:DescribeInstances associated to the IAM user configured.

Thanks,

jeff · July 1, 2022, 1:56pm

As far as I know there were no changes to host catalogs between the two versions. Can you ensure that the credential is still valid? Do you see anything in boundary’s events?

ThomasKinow · July 1, 2022, 2:12pm

The credential of the IAM user is still valid. From the AWS CloudTrail console

The 0.9.0 upgrade took place around June 24, 2022, 21:01:35 (UTC+02:00). The only call after that is today when I tried to recreate the host catalog plugin, host set plugin and target (because it was not working) but I guess this call is just a configuration check as DryRun flag is set.

jeff · July 1, 2022, 3:33pm

What is shown in Boundary’s event log? If it’s not syncing there is likely some issue.

There is a known bug in 0.9 if controller names are less than 10 characters it can fail to register jobs. This will be shown as an error in the event log. It will be fixed in 0.9.1.

ThomasKinow · July 1, 2022, 3:49pm

Indeed, I see the error message db.Query: controller_id_must_be_at_least_10_characters constraint failed: check constraint violated: integrity violation: error #1000

@jeff Thank you very much for you help!

jeff · July 1, 2022, 7:09pm

Sure, glad to be of help!

ThomasKinow · July 7, 2022, 3:22pm

Update to 0.9.1 fixed this issue

jeff · July 12, 2022, 6:14pm

Great! Glad to hear it!