Cron job for key rotation not running in keystone_fernet container for source images
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kolla-ansible |
Fix Released
|
High
|
Mark Goddard | ||
Rocky |
Fix Released
|
High
|
Mark Goddard | ||
Stein |
Fix Released
|
High
|
Mark Goddard | ||
Train |
Fix Released
|
High
|
Mark Goddard | ||
Ussuri |
Fix Released
|
High
|
Mark Goddard |
Bug Description
Kolla Ansible 8.0.1 (Stein, built from source) deployment on CentOS
Kernel - 4.18.16-
I noticed that the dates on the fernet keys were somewhat old, and it appears that the cron job isn't running or something is failing, but without an error anywhere.
I can connect to the container (docker exec -it) and run the script (/usr/bin/
crond is running (as root), and the schedule is correct (I even forced the schedule of one of the controllers to a couple minutes from now, and it still didn't execute the script).
No errors appear in the docker logs for this container (the keystone_fernet container).
Maybe there is a permissions issue elsewhere (at the container level perhaps)? Anyone else have this issue?
Any ideas?
Eric
Changed in kolla-ansible: | |
status: | New → Triaged |
importance: | Undecided → High |
summary: |
- Cron job for key rotation not running in keystone_fernet container + Cron job for key rotation not running in keystone_fernet container for + source images |
I haven't noticed this issue, although we did recently make changes to keystone key rotation. Did you get to the bottom of it?