Murano does not support SSL with cert for engine<>agent communication
| Affects | Status | Importance | Assigned to | Milestone | ||
|---|---|---|---|---|---|---|
| Mirantis OpenStack | Status tracked in 10.0.x | |||||
| 10.0.x |
Fix Committed
|
High
|
Konstantin | |||
| 6.1.x |
Won't Fix
|
High
|
Unassigned | |||
| 7.0.x |
Won't Fix
|
High
|
Unassigned | |||
| 8.0.x |
Won't Fix
|
High
|
Unassigned | |||
| 9.x |
Fix Released
|
High
|
Konstantin | |||
Bug Description
Upstream bug: https:/
Detailed bug description:
Murano does support specifying certificate for SSL connectivity between murano-engine and murano-agent, but this value (along side with certificate) is not passed to the murano-agent during first VM boot through cloud-init.
Steps to reproduce:
1. Configure SSL for Murano RabbitMQ
2. Configure SSL in Murano:
vi /etc/murano/
[rabbitmq]
...
ssl=True
ca_
3. Deploy any application
Expected results:
Environment with application deployed successfully
Actual result:
Environment with application hangs during deployment, murano-agent configuration of VM does not anything related to cert configured
Reproducibility:
Always
Workaround:
Update core-library, example for stable/kilo - https:/
Impact:
Murano does not work on any environment which requires certificates used for SSL connectivity
| summary: |
- Murano does not support TLS with cert for engine<>agent communication + Murano does not support SSL with cert for engine<>agent communication |
| description: | updated |
| tags: | added: customer-found |
| Dina Belova (dbelova) wrote | #2 |
| Serg Melikyan (smelikyan) wrote | #3 |
| Serg Melikyan (smelikyan) wrote | #4 |
| Serg Melikyan (smelikyan) wrote | #5 |
| Alex Kholkin (akholkin) wrote | #6 |
Setting the same priority/status for the 10.0