Comment 13 for bug 1816927

Reviewed: https://review.openstack.org/639234
Committed: https://git.openstack.org/cgit/openstack/openstack-ansible-os_keystone/commit/?id=3a3f062cb66a4d7b046d9fd49842cdbd6fdcd738
Submitter: Zuul
Branch: stable/rocky

commit 3a3f062cb66a4d7b046d9fd49842cdbd6fdcd738
Author: Kevin Carter <email address hidden>
Date: Wed Feb 20 21:43:35 2019 -0600

    Correct fernet token sync race condition

    The fernet token rotation is subject to a race condition when using
    aggressive rotation in a high volume, high traffic, high capacity cloud.
    This change addresses the potential race condition by converting our
    fernet token sync method from rsync to scp and by sorting the fernet
    keys in reverse version ordering. This will ensure that the key with
    the highest index is always synchronized first and will ensure that
    the underlying file structure of a given target node always remains
    intact during a sync operation.

    Related-Bug: 1816927
    Change-Id: I9087d953f7dabe04a2ad19af6121dae71544e5b2
    Signed-off-by: Kevin Carter <email address hidden>
    (cherry picked from commit 28a0c5abbf654ff8b625edc0c12af50a3def2429)