rabbitmq tls support needs tweaks for rabbitmq 3.9
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
High
|
Michele Baldessari |
Bug Description
TLDR:
On TLS-E environments, erlang24, needed by rabbitmq 3.9 has https:/
2021-09-
We need to tweak a few things to fix this up. Namely the following needs to happen:
- Make sure rabbitmq and erlang use the fqdn hostnames
- Drop the old hardcoded ciphers default as now it is not needed any longer
- Move the ssl erlang options into a separate file
- Makre sure the client uses verify_peer
Changed in tripleo: | |
status: | Triaged → In Progress |
Fixed by https:/ /review. opendev. org/c/openstack /tripleo- heat-templates/ +/812390 and https:/ /review. opendev. org/c/openstack /puppet- tripleo/ +/812401