Ironic doesn't pass ca file to swiftclient

Bug #1454353 reported by Ramakrishnan G (rameshg87)
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Ironic
Fix Released
Undecided
Ramakrishnan G (rameshg87)
Kilo
Fix Released
Undecided
Unassigned

Bug Description

Currently we have an option keystonemiddleware.auth_token.cafile which has the ca file to use for verifying https connections. This is in ironic.conf. But this is not passed while creating a swift client. Only by passing this to the SwiftClient, all the communication between Ironic and Swift can be done in https.

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to ironic (master)

Fix proposed to branch: master
Review: https://review.openstack.org/182393

Changed in ironic:
assignee: nobody → Ramakrishnan G (rameshg87) (rameshg87)
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to ironic (master)

Reviewed: https://review.openstack.org/182393
Committed: https://git.openstack.org/cgit/openstack/ironic/commit/?id=aa73025c1c3f99252654d2e3875be3866f5e2862
Submitter: Jenkins
Branch: master

commit aa73025c1c3f99252654d2e3875be3866f5e2862
Author: Ramakrishnan G <email address hidden>
Date: Tue May 12 10:25:32 2015 -0700

    Ironic doesn't use cacert while talking to Swift

    Current we have a keystonemiddleware.auth_token.cafile
    which is used for talking to Openstack services using https.
    Ironic doesn't pass this down to swiftclient for verifying
    https connections.

    Closes-Bug: 1454353
    Change-Id: Id085ea6c0f1d072ec631b9851ddfde96852aca56

Changed in ironic:
status: In Progress → Fix Committed
Changed in ironic:
milestone: none → 4.0.0
status: Fix Committed → Fix Released
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to ironic (stable/kilo)

Fix proposed to branch: stable/kilo
Review: https://review.openstack.org/253460

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to ironic (stable/juno)

Fix proposed to branch: stable/juno
Review: https://review.openstack.org/253464

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Change abandoned on ironic (stable/juno)

Change abandoned by Jeremy Stanley (<email address hidden>) on branch: stable/juno
Review: https://review.openstack.org/253464
Reason: I'm abandoning this change in preparation for deleting the stable/juno branch, which is now at end of life.

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to ironic (stable/kilo)

Reviewed: https://review.openstack.org/253460
Committed: https://git.openstack.org/cgit/openstack/ironic/commit/?id=d404492aed582fd275495a860ef1d153623ce3fa
Submitter: Jenkins
Branch: stable/kilo

commit d404492aed582fd275495a860ef1d153623ce3fa
Author: Aparna <email address hidden>
Date: Tue Dec 15 05:58:16 2015 +0000

    Ironic doesn't use cacert while talking to Swift

    Currently we have a keystonemiddleware.auth_token.cafile
    which is used for talking to Openstack services using https.
    Ironic doesn't pass this down to swiftclient for verifying
    https connections.

    Closes-Bug: #1454353
    Change-Id: Id085ea6c0f1d072ec631b9851ddfde96852aca56
    (cherry picked from commit aa73025c1c3f99252654d2e3875be3866f5e2862)

tags: added: in-stable-kilo
Revision history for this message
Doug Hellmann (doug-hellmann) wrote : Fix included in openstack/ironic 2015.1.4

This issue was fixed in the openstack/ironic 2015.1.4 release.

Revision history for this message
OpenStack Infra (hudson-openstack) wrote :

This issue was fixed in the openstack/ironic 2015.1.4 release.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.