Bug #1821756 “TripleO should configure server_certs_key_passphr...” : Bugs : tripleo

Nir Magnezi (nmagnezi) on 2019-03-26

Changed in tripleo:
assignee:	nobody → Nir Magnezi (nmagnezi)
description:	updated

OpenStack Infra (hudson-openstack) on 2019-03-26

Changed in tripleo:
status:	New → In Progress

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-04-03: Fix merged to tripleo-common (master)

#1

Reviewed: https://review.openstack.org/647413
Committed: https://git.openstack.org/cgit/openstack/tripleo-common/commit/?id=da967dd80bcca8966581444417ad7cb27d7e60ba
Submitter: Zuul
Branch: master

commit da967dd80bcca8966581444417ad7cb27d7e60ba
Author: Nir Magnezi <email address hidden>
Date: Mon Mar 25 14:54:07 2019 +0200

Add passphrase generation for Octavia

    A recent change[1] to Octavia added a parameter named
    server_certs_key_passphrase, which means that we should generate a
    password for it to avoid using the default value.

This patch adds OctaviaServerCertsKeyPassphrase to the list of
generated password/secrets, similarly to this past change[2].

Closes-Bug: #1821756
Related-Bug: #1821751

[1] I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
[2] I1dd1873b646e8569ed0a85c5ee7eb3bec3a8b1fa

Change-Id: I9699961faf8b3430e4372e4ff3ae2bf7e7ceea18

Changed in tripleo:
status:	In Progress → Fix Released

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-04-04: Fix included in openstack/tripleo-common 10.6.1

#2

This issue was fixed in the openstack/tripleo-common 10.6.1 release.

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-05-28: Fix merged to tripleo-heat-templates (master)

#3

Reviewed: https://review.opendev.org/647467
Committed: https://git.openstack.org/cgit/openstack/tripleo-heat-templates/commit/?id=4559d3b74f6827e6509f04b158cfbeba26041e22
Submitter: Zuul
Branch: master

commit 4559d3b74f6827e6509f04b158cfbeba26041e22
Author: Nir Magnezi <email address hidden>
Date: Mon Mar 25 15:23:47 2019 +0200

Configure server_certs_key_passphrase for Octavia

    A recent change[1] to Octavia added a parameter named
    server_certs_key_passphrase, which means that TripleO should
    generate a password for it to avoid using the default value.

This patch adds OctaviaServerCertsKeyPassphrase to the list
of parameters TripleO configures in Octavia.

Closes-Bug: #1821756
Related-Bug: #1821751

    [1] I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
    Depends-On: I9699961faf8b3430e4372e4ff3ae2bf7e7ceea18
    Depends-On: Id6c0d156715147c6559dc39098a6eaabf77ac426
    Depends-On: I5e60e8fbb7af381b59c6d7b02d5ba8eb47e91720
    Change-Id: Icadd090f027af6f958c25af6bfb09195a4019aa8

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-05-29: Fix proposed to tripleo-common (stable/rocky)

#4

Fix proposed to branch: stable/rocky
Review: https://review.opendev.org/661948

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-05-29: Fix proposed to tripleo-common (stable/queens)

#5

Fix proposed to branch: stable/queens
Review: https://review.opendev.org/661949

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-05-29: Fix proposed to tripleo-heat-templates (stable/stein)

#6

Fix proposed to branch: stable/stein
Review: https://review.opendev.org/661954

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-05-29: Fix proposed to tripleo-heat-templates (stable/rocky)

#7

Fix proposed to branch: stable/rocky
Review: https://review.opendev.org/661961

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-05-29: Fix proposed to tripleo-heat-templates (stable/queens)

#8

Fix proposed to branch: stable/queens
Review: https://review.opendev.org/661968

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-07: Fix included in openstack/tripleo-heat-templates 11.0.0

#9

This issue was fixed in the openstack/tripleo-heat-templates 11.0.0 release.

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-11: Fix merged to tripleo-common (stable/rocky)

#10

Reviewed: https://review.opendev.org/661948
Committed: https://git.openstack.org/cgit/openstack/tripleo-common/commit/?id=23371a7a163b54bfeda0cd5188adc0aada1fdb32
Submitter: Zuul
Branch: stable/rocky

commit 23371a7a163b54bfeda0cd5188adc0aada1fdb32
Author: Nir Magnezi <email address hidden>
Date: Mon Mar 25 14:54:07 2019 +0200

Add passphrase generation for Octavia

    A recent change[1] to Octavia added a parameter named
    server_certs_key_passphrase, which means that we should generate a
    password for it to avoid using the default value.

This patch adds OctaviaServerCertsKeyPassphrase to the list of
generated password/secrets, similarly to this past change[2].

Closes-Bug: #1821756
Related-Bug: #1821751

[1] I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
[2] I1dd1873b646e8569ed0a85c5ee7eb3bec3a8b1fa

Change-Id: I9699961faf8b3430e4372e4ff3ae2bf7e7ceea18
(cherry picked from commit da967dd80bcca8966581444417ad7cb27d7e60ba)

tags:	added: in-stable-rocky
tags:	added: in-stable-queens

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-11: Fix merged to tripleo-common (stable/queens)

#11

Reviewed: https://review.opendev.org/661949
Committed: https://git.openstack.org/cgit/openstack/tripleo-common/commit/?id=2be48861a48e078d26fa581bb5b6a0f08c4f6378
Submitter: Zuul
Branch: stable/queens

commit 2be48861a48e078d26fa581bb5b6a0f08c4f6378
Author: Nir Magnezi <email address hidden>
Date: Mon Mar 25 14:54:07 2019 +0200

Add passphrase generation for Octavia

    A recent change[1] to Octavia added a parameter named
    server_certs_key_passphrase, which means that we should generate a
    password for it to avoid using the default value.

This patch adds OctaviaServerCertsKeyPassphrase to the list of
generated password/secrets, similarly to this past change[2].

Closes-Bug: #1821756
Related-Bug: #1821751

[1] I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
[2] I1dd1873b646e8569ed0a85c5ee7eb3bec3a8b1fa

Change-Id: I9699961faf8b3430e4372e4ff3ae2bf7e7ceea18
(cherry picked from commit da967dd80bcca8966581444417ad7cb27d7e60ba)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-13: Fix merged to tripleo-heat-templates (stable/stein)

#12

Reviewed: https://review.opendev.org/661954
Committed: https://git.openstack.org/cgit/openstack/tripleo-heat-templates/commit/?id=37ec3710af3deaa3ceb4138b4ed40022d2231043
Submitter: Zuul
Branch: stable/stein

commit 37ec3710af3deaa3ceb4138b4ed40022d2231043
Author: Nir Magnezi <email address hidden>
Date: Mon Mar 25 15:23:47 2019 +0200

Configure server_certs_key_passphrase for Octavia

    A recent change[1] to Octavia added a parameter named
    server_certs_key_passphrase, which means that TripleO should
    generate a password for it to avoid using the default value.

This patch adds OctaviaServerCertsKeyPassphrase to the list
of parameters TripleO configures in Octavia.

Closes-Bug: #1821756
Related-Bug: #1821751

    [1] I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
    Depends-On: I9699961faf8b3430e4372e4ff3ae2bf7e7ceea18
    Depends-On: Id6c0d156715147c6559dc39098a6eaabf77ac426
    Depends-On: I5e60e8fbb7af381b59c6d7b02d5ba8eb47e91720
    Change-Id: Icadd090f027af6f958c25af6bfb09195a4019aa8
    (cherry picked from commit 4559d3b74f6827e6509f04b158cfbeba26041e22)

tags:

added: in-stable-stein

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-17: Fix merged to tripleo-heat-templates (stable/rocky)

#13

Reviewed: https://review.opendev.org/661961
Committed: https://git.openstack.org/cgit/openstack/tripleo-heat-templates/commit/?id=de16ec8b02b58dc5332f3f04a09c50facfdf7406
Submitter: Zuul
Branch: stable/rocky

commit de16ec8b02b58dc5332f3f04a09c50facfdf7406
Author: Nir Magnezi <email address hidden>
Date: Mon Mar 25 15:23:47 2019 +0200

Configure server_certs_key_passphrase for Octavia

    A recent change[1] to Octavia added a parameter named
    server_certs_key_passphrase, which means that TripleO should
    generate a password for it to avoid using the default value.

This patch adds OctaviaServerCertsKeyPassphrase to the list
of parameters TripleO configures in Octavia.

    Conflicts:
          ci/environments/scenario010-standalone.yaml
          deployment/octavia/octavia-base.yaml
          environments/services/octavia.yaml

    Note that octavia-base.yaml exists under puppet/services since
    https://review.opendev.org/#/c/638762 got merged in
    stable/stein.

Closes-Bug: #1821756
Related-Bug: #1821751

    [1] I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
    Depends-On: I9699961faf8b3430e4372e4ff3ae2bf7e7ceea18
    Depends-On: Id6c0d156715147c6559dc39098a6eaabf77ac426
    Depends-On: I5e60e8fbb7af381b59c6d7b02d5ba8eb47e91720

Change-Id: Icadd090f027af6f958c25af6bfb09195a4019aa8
(cherry picked from commit 4559d3b74f6827e6509f04b158cfbeba26041e22)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-17: Fix merged to tripleo-heat-templates (stable/queens)

#14

Reviewed: https://review.opendev.org/661968
Committed: https://git.openstack.org/cgit/openstack/tripleo-heat-templates/commit/?id=e42e72b0f3e74b5d55a05ec27b2b028d6fceada4
Submitter: Zuul
Branch: stable/queens

commit e42e72b0f3e74b5d55a05ec27b2b028d6fceada4
Author: Nir Magnezi <email address hidden>
Date: Mon Mar 25 15:23:47 2019 +0200

Configure server_certs_key_passphrase for Octavia

    A recent change[1] to Octavia added a parameter named
    server_certs_key_passphrase, which means that TripleO should
    generate a password for it to avoid using the default value.

This patch adds OctaviaServerCertsKeyPassphrase to the list
of parameters TripleO configures in Octavia.

    Conflicts:
          ci/environments/scenario010-standalone.yaml
          deployment/octavia/octavia-base.yaml
          environments/services/octavia.yaml

    Note that octavia-base.yaml exists under puppet/services since
    https://review.opendev.org/#/c/638762 got merged in
    stable/stein.

Closes-Bug: #1821756
Related-Bug: #1821751

    [1] I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
    Depends-On: I9699961faf8b3430e4372e4ff3ae2bf7e7ceea18
    Depends-On: Id6c0d156715147c6559dc39098a6eaabf77ac426
    Depends-On: I5e60e8fbb7af381b59c6d7b02d5ba8eb47e91720

    Change-Id: Icadd090f027af6f958c25af6bfb09195a4019aa8
    (cherry picked from commit 4559d3b74f6827e6509f04b158cfbeba26041e22)
    (cherry picked from commit de16ec8b02b58dc5332f3f04a09c50facfdf7406)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-21: Fix included in openstack/tripleo-common 9.6.0

#15

This issue was fixed in the openstack/tripleo-common 9.6.0 release.

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-21: Fix included in openstack/tripleo-heat-templates 9.4.0

#16

This issue was fixed in the openstack/tripleo-heat-templates 9.4.0 release.

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-21: Fix included in openstack/tripleo-common 8.7.0

#17

This issue was fixed in the openstack/tripleo-common 8.7.0 release.

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-06-21: Fix included in openstack/tripleo-heat-templates 8.4.0

#18

This issue was fixed in the openstack/tripleo-heat-templates 8.4.0 release.

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-07-05: Fix included in openstack/tripleo-heat-templates 10.6.0

#19

This issue was fixed in the openstack/tripleo-heat-templates 10.6.0 release.

tripleo

TripleO should configure server_certs_key_passphrase for Octavia

Bug Description

Other bug subscribers

Remote bug watches