I tried at first undeleting the container entity in the mysql/barbican DB for the missing barbican container, however, that provided project ID/permissions issues in barbican.
Since the container was deleted in barbican, I tried using:
openstack loadbalancer listener set --default-tls-container-ref '' <listener-uuid>
But that was giving the "container is in another castle" error as well.
I modified the listener table in the octavia database to zero out the default-tls-container-ref string after validating that the containers were deleted in barbican.
I tried at first undeleting the container entity in the mysql/barbican DB for the missing barbican container, however, that provided project ID/permissions issues in barbican.
Since the container was deleted in barbican, I tried using: tls-container- ref '' <listener-uuid>
openstack loadbalancer listener set --default-
But that was giving the "container is in another castle" error as well.
I modified the listener table in the octavia database to zero out the default- tls-container- ref string after validating that the containers were deleted in barbican.
mysql> select * from listener where load_balancer_id = 'c066406f- 0f5e-427b- bba8-ab3e8cf186 03'\G ******* ******* ****** 1. row ******* ******* ******* ******
project_ id: ef8b2568c694461 499c074c641a57a 14
id: 51823607- bb4d-488c- 87c1-1e22e0a11d 81
name: NULL
description: NULL
protocol: TERMINATED_HTTPS
protocol_ port: 443
connection _limit: -1
load_ balancer_ id: c066406f- 0f5e-427b- bba8-ab3e8cf186 03
tls_ certificate_ id: https:/ /barbican- internal. mysite: 9312/v1/ containers/ fb1f6514- 000f-4991- 8ccd-4da923e19a b2
default_ pool_id: e05d9cad- e1c1-4b3c- 9204-dcd79e1d5e e3
provisioning_ status: ACTIVE
operating_ status: ONLINE
enabled: 1
peer_ port: 1025
insert_ headers: �� }�.
created_ at: 2019-11-01 20:03:58
updated_ at: 2019-11-05 14:02:04
timeout_ client_ data: 50000 member_ connect: 5000
timeout_ member_ data: 50000
timeout_ tcp_inspect: 0 ca_tls_ certificate_ id: NULL
client_ authentication: NONE crl_container_ id: NULL
*******
timeout_
client_
client_
1 row in set (0.00 sec)
mysql> update listener set tls_certificate _id='' where load_balancer_id = 'c066406f- 0f5e-427b- bba8-ab3e8cf186 03';
Query OK, 1 row affected (0.00 sec)
Rows matched: 1 Changed: 1 Warnings: 0
This then allowed for a cascaded loadbalancer delete.