Comment 15 for bug 1998417

(skyline-apiserver)[root@tunninet-server-noel /]$ curl https://int.noel.openstack.tunninet.com:5000/v3
{"version": {"id": "v3.14", "status": "stable", "updated": "2020-04-07T00:00:00Z", "links": [{"rel": "self", "href": "https://int.noel.openstack.tunninet.com:5000/v3/"}], "media-types": [{"base": "application/json", "type": "application/vnd.openstack.identity-v3+json"}]}}curl (https://int.noel.openstack.tunninet.com:5000/v3): response: 200, time: 0.064707, size: 272

(skyline-console)[root@tunninet-server-noel /]$ curl https://int.noel.openstack.tunninet.com:5000/v3
{"version": {"id": "v3.14", "status": "stable", "updated": "2020-04-07T00:00:00Z", "links": [{"rel": "self", "href": "https://int.noel.openstack.tunninet.com:5000/v3/"}], "media-types": [{"base": "application/json", "type": "application/vnd.openstack.identity-v3+json"}]}}curl (https://int.noel.openstack.tunninet.com:5000/v3): response: 200, time: 0.062545, size: 272

(skyline-console)[root@tunninet-server-noel /]$ ls -la /usr/local/share/ca-certificates
total 16
drwxr-xr-x 1 root root 4096 Jul 4 22:19 .
drwxr-xr-x 1 root root 4096 Jul 3 23:33 ..
-rw-r--r-- 1 root root 1814 Jul 4 22:19 kolla-customca-root.crt
(skyline-console)[root@tunninet-server-noel /]$ ls -la /etc/ssl/certs/ca-certificates.crt
-rw-r--r-- 1 root root 210381 Jul 4 22:19 /etc/ssl/certs/ca-certificates.crt

(skyline-apiserver)[root@tunninet-server-noel /]$ ls -la /usr/local/share/ca-certificates
total 16
drwxr-xr-x 1 root root 4096 Jul 4 22:19 .
drwxr-xr-x 1 root root 4096 Jul 3 23:28 ..
-rw-r--r-- 1 root root 1814 Jul 4 22:19 kolla-customca-root.crt
(skyline-apiserver)[root@tunninet-server-noel /]$ ls -la /etc/ssl/certs/ca-certificates.crt
-rw-r--r-- 1 root root 210381 Jul 4 22:19 /etc/ssl/certs/ca-certificates.crt

def the issue is in the skyline code not using the system certs for TLS somehow... (my best guess) seems like it can not get domain info from keystone w a self signed....