Fuel for OpenStack

[Heat] incorrect config option url for SSL

Bug #1582283 reported by Peter Razumovsky on 2016-05-16

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
Fuel for OpenStack	Fix Committed	High	Denis Egorenko	Fuel for OpenStack 10.0
Mitaka	Fix Released	High	Denis Egorenko	Fuel for OpenStack 9.0
Newton	Fix Committed	High	Denis Egorenko	Fuel for OpenStack 10.0

Bug Description

Detailed bug description:
This bug is caused by https://bugs.launchpad.net/fuel/+bug/1576520
I use MOS 9.0 with SSL.
Default configuration of heat is incorrect - heat_waitcondition_server_url has http scheme for SSL instead of https scheme.
Besides that, default value of heat_waitcondition_server_url uses ip instead of hostname, which causes issues in some projects (e.g. aodh cannot correctly resolve ip because it's certificate signed with hostname). Example of failure: http://paste.openstack.org/show/497180/

Steps to reproduce:
Run fuel-qa "deploy_heat_ha" test group
Expected results:
OSTF tests pass
Actual result:
OSTF test "Check stack autoscaling" fails
Reproducibility:
100%
Workaround:
<put your information here>
Impact:
<put your information here>
Description of the environment:
Operation system: fuel-9.0-257-2016-04-28
Versions of components: <put your information here>
Reference architecture: <put your information here>
Network model: <put your information here>
Related projects installed: <put your information here>
Additional information:
<put your information here>

Possible solution is change default config values to correct in [1] and same places, which uses http protocol.

[1] https://review.fuel-infra.org/gitweb?p=openstack/fuel-library.git;a=blob;f=deployment/puppet/openstack_tasks/manifests/heat/heat.pp;h=1fa6a94ef8101af714e0e124fe8086f8bd17da05;hb=refs/heads/master#l40

Peter Razumovsky (prazumovsky) on 2016-05-16

Changed in fuel:
status:	New → Confirmed

Denis Egorenko (degorenko) on 2016-05-16

Changed in fuel:
importance:	Undecided → High
milestone:	none → 10.0

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-05-16: Fix proposed to fuel-library (master)

Fix proposed to branch: master
Review: https://review.openstack.org/317031

Changed in fuel:
assignee:	nobody → Denis Egorenko (degorenko)
status:	Confirmed → In Progress

Revision history for this message

Ivan Berezovskiy (iberezovskiy) wrote on 2016-05-19:

Adding Mitaka milestone because issue was actually found in Fuel 9.0

Revision history for this message

Ivan Berezovskiy (iberezovskiy) wrote on 2016-05-24:

Upstream puppet heat patches:
master - https://review.openstack.org/#/c/319325/
stable/mitaka - https://review.openstack.org/#/c/320058/

Revision history for this message

Ivan Berezovskiy (iberezovskiy) wrote on 2016-05-27:

Patches for both milestones are prepared, we are waiting tests results from Heat team.

Revision history for this message

Denis Egorenko (degorenko) wrote on 2016-05-27:

Related master fix: https://review.openstack.org/#/c/317031/

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-05-27: Fix merged to fuel-library (master)

Reviewed: https://review.openstack.org/317031
Committed: https://git.openstack.org/cgit/openstack/fuel-library/commit/?id=610564638f35a6609d7d84e3f5a7c7a48ff2e06e
Submitter: Jenkins
Branch: master

commit 610564638f35a6609d7d84e3f5a7c7a48ff2e06e
Author: Denis Egorenko <email address hidden>
Date: Mon May 16 20:54:35 2016 +0300

Use public_hash for determining current protocol and address for Heat

    Heat parameters heat_metadata_server_url, heat_waitcondition_server_url,
    heat_watch_server_url require to be set with proper protocol and address
    in case of usage SSL.

Change-Id: I7baa7b44db4237347ddadccb4537e0080ef62322
Closes-bug: #1582283

Changed in fuel:
status:	In Progress → Fix Committed

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-05-27: Fix proposed to fuel-library (stable/mitaka)

Fix proposed to branch: stable/mitaka
Review: https://review.openstack.org/322259

Revision history for this message

Denis Egorenko (degorenko) wrote on 2016-05-27:

Stable/mitaka: https://review.openstack.org/322259

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-05-30: Fix merged to fuel-library (stable/mitaka)

Reviewed: https://review.openstack.org/322259
Committed: https://git.openstack.org/cgit/openstack/fuel-library/commit/?id=bd9cc8266b0a9f26a00bd93ff92491536192006b
Submitter: Jenkins
Branch: stable/mitaka

commit bd9cc8266b0a9f26a00bd93ff92491536192006b
Author: Denis Egorenko <email address hidden>
Date: Mon May 16 20:54:35 2016 +0300

Use public_hash for determining current protocol and address for Heat

    Heat parameters heat_metadata_server_url, heat_waitcondition_server_url,
    heat_watch_server_url require to be set with proper protocol and address
    in case of usage SSL.

    Change-Id: I7baa7b44db4237347ddadccb4537e0080ef62322
    Closes-bug: #1582283
    (cherry picked from commit 610564638f35a6609d7d84e3f5a7c7a48ff2e06e)

Revision history for this message

Evgeny Sikachev (esikachev) wrote on 2016-06-14:

#10

verified on 429 iso, mos 9.0

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-08-10: Related fix proposed to fuel-library (stable/8.0)

#11

Related fix proposed to branch: stable/8.0
Review: https://review.openstack.org/353445

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2016-08-15: Related fix merged to fuel-library (stable/8.0)

#12

Reviewed: https://review.openstack.org/353445
Committed: https://git.openstack.org/cgit/openstack/fuel-library/commit/?id=5449a63af121f89b0e38016f1c5b84562127a304
Submitter: Jenkins
Branch: stable/8.0

commit 5449a63af121f89b0e38016f1c5b84562127a304
Author: Denis Egorenko <email address hidden>
Date: Mon May 16 20:54:35 2016 +0300

Use public_hash for determining current protocol and address for Heat

    Heat parameters heat_metadata_server_url, heat_waitcondition_server_url,
    heat_watch_server_url require to be set with proper protocol and address
    in case of usage SSL.

    Change-Id: I7baa7b44db4237347ddadccb4537e0080ef62322
    Closes-bug: #1576520
    Related-bug: #1582283
    (cherry picked from commit 610564638f35a6609d7d84e3f5a7c7a48ff2e06e)

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.