Installation of undercloud with ssl may fails as keepalived may not be started before haproxy
Bug #1638029 reported by
Sofer Athlan-Guyot
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
Critical
|
Sofer Athlan-Guyot |
Bug Description
Hi,
installing the undercloud with ssl enable may sometimes fails if the keepalived service is not started before the haproxy service.
The final error is:
Could not evaluate: Execution of '/bin/openstack token issue --format value' returned 1: Unable to establish connection to https:/
during
puppet apply --debug --detailed-
(openstack undercloud install)
The first time the error has been is in this bz : https:/
Changed in tripleo: | |
assignee: | nobody → Sofer Athlan-Guyot (sofer-athlan-guyot) |
status: | New → In Progress |
Changed in tripleo: | |
milestone: | none → ocata-1 |
tags: | removed: mitaka-backport-potential |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/391873 /git.openstack. org/cgit/ openstack/ puppet- tripleo/ commit/ ?id=aa82e175b52 76729385f9b938f 34a291b98640f5
Committed: https:/
Submitter: Jenkins
Branch: master
commit aa82e175b527672 9385f9b938f34a2 91b98640f5
Author: Sofer Athlan-Guyot <email address hidden>
Date: Mon Oct 31 15:53:13 2016 +0100
Make sure keepalived is restarted before haproxy.
When using SSL setup for undercloud, the admin and public vip required
for ssl binding by haproxy are created by keepalived.
This makes sure that keepalived is started before haproxy and thus that
the interfaces are indeed present.
This patch also ensures this is happening for overcloud ssl
configuration. The case where another load-balancing technology other
than haproxy is used is not covered.
Closes-Bug: #1638029
Change-Id: I98cb0dcd7f389a 1dd38ec8324429b fef4979aa66