The curl command to reach ETCD endpoint fails when keyEncipherment is
not present in ETCD server certificate. The code added to playbook adds
keyEncipherment to both server and client ETCD certificates. The
keyEncipherment is not essential to client certificate, but it causes no
problems.
Reviewed: https:/ /review. opendev. org/c/starlingx /ansible- playbooks/ +/799903 /opendev. org/starlingx/ ansible- playbooks/ commit/ 75a2537cc4684be 3241aed4b5483f0 0bdcbb79c3
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 75a2537cc4684be 3241aed4b5483f0 0bdcbb79c3
Author: Joao Victor Portal <email address hidden>
Date: Wed Jul 7 16:11:32 2021 -0300
Set 'Key Encipherment' in ETCD certificates
The curl command to reach ETCD endpoint fails when keyEncipherment is
not present in ETCD server certificate. The code added to playbook adds
keyEncipherment to both server and client ETCD certificates. The
keyEncipherment is not essential to client certificate, but it causes no
problems.
Closes-Bug: 1931719 e5a85dad024939f 36d77bfa606
Signed-off-by: Joao Victor Portal <email address hidden>
Change-Id: Iba120ec941a33d