haproxy cert injection doesn't handle pacemaker container as expected
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
High
|
Damien Ciabrini |
Bug Description
In Id7308f028f3371
However the new cert injection code wrongly assumes that it being passed a container name to determine how to inject certificate, whereas it's being given a container id, e.g.:
2021-03-26 14:13:22 | 2021-03-26 14:13:22.202524 | 52540056-
Consequently, the check is never true and the behaviour is not the expected one.
Changed in tripleo: | |
importance: | Undecided → High |
Reviewed: https:/ /review. opendev. org/c/openstack /tripleo- heat-templates/ +/784136 /opendev. org/openstack/ tripleo- heat-templates/ commit/ 77358cbcce8d5b7 f8a6a083444210e aaaa7646d0
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 77358cbcce8d5b7 f8a6a083444210e aaaa7646d0
Author: Damien Ciabrini <email address hidden>
Date: Wed Mar 31 18:47:03 2021 +0200
HA: fix injection of certificate in haproxy container
Injection of certificate in pacemaker-managed haproxy [1] is never
exercised due to a bad parsing of container name vs container id.
Closes-Bug: #1922106
[1] Id7308f028f3371 6be5e3df6699c3f 2c12e33e344
Change-Id: Ic6e4264c5ad46b d2589cc907c365a f2d42fde63d