ansible remote bootstrap fails to include validate_address.yml when set apiserver_cert_sans in host configuration
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Andy |
Bug Description
Brief Description
-----------------
When set apiserver_cert_sans and try to run ansible-playbook remotely,
it fails when try to include validate_
Severity
--------
Critical
(System won't be configured remotely.)
Steps to Reproduce
------------------
1. from system under configuration copy /usr/share/
2. create file hosts and copy following content on it
---
all:
hosts:
hostname1:
ansible_host: 192.168.59.3 #use your system ip address.
vars:
ansible_ssh_user: sysadmin
ansible_ssh_pass: Li69nux*
ansible_
3. export BOOTSTRAP_
4. export ANSIBLE_
6. create hostname1.yml and copy following configuration
---
cluster_
external_
external_
external_
dns_servers:
- 128.224.144.130
apiserver_
- 192.168.59.2 # any ip address it's fine.
7. ansible-playbooks $BOOTSTRAP_PLAYBOOK -i hosts -e "override_
Expected Behavior
------------------
Validation address should be executed same way as previous steps, for instance:
File: playbooks/
Validate no proxy addresses (same file line 442)
Validate registry type if specified (same file line 525)
Actual Behavior
----------------
it failed and exit with the following error
TASK [bootstrap/
[0;31mfatal: [yow-cgcs-
Reproducibility
---------------
Reproducible
System Configuration
-------
AIO, but it seems it affects all configurations when try bootstrap remotely
Branch/Pull Time/Commit
-------
N/A
Last Pass
---------
Unknown
Timestamp/Logs
--------------
TASK [bootstrap/
[0;36mskipping: [yow-cgcs-
TASK [bootstrap/
[0;36mskipping: [yow-cgcs-
TASK [bootstrap/
[0;36mskipping: [yow-cgcs-
TASK [bootstrap/
[0;31mfatal: [yow-cgcs-
PLAY RECAP *******
[0;31myow-
-----------
Setup started:
+++++++
Test steps started:
***Failure at test call: /home/svc-
FAILED[2020-06-26 19:12:56,729] 271 INFO MainThread conftest.
-------
Test Result for: tc_sysinstall/
Test Activity
-------------
Developer Testing
Workaround
----------
Modify file playbooks/
657: - name: Validate apiserver_cert_sans entries
658: include: validate_
659: with_items: "{{ apiserver_cert_sans }}"
Changed in starlingx: | |
assignee: | nobody → Andy (andy.wrs) |
status: | New → In Progress |
Changed in starlingx: | |
importance: | Undecided → Medium |
tags: | added: stx.5.0 stx.config |
Fix proposed to branch: master /review. opendev. org/752243
Review: https:/