containerized rabbitmq does not use SSL when enable_internal_tls is set to true
Bug #1709558 reported by
Damien Ciabrini
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
High
|
Damien Ciabrini |
Bug Description
With the "TLS everywhere" work, rabbitmq can now use TLS for to serve and mirror traffic.
This works on non-containerized deployment, but containerized rabbitmq deployment do not get configured as expected, they keep using plain unencrypted sockets.
Changed in tripleo: | |
assignee: | nobody → Damien Ciabrini (dciabrin) |
status: | New → In Progress |
Changed in tripleo: | |
importance: | Undecided → Critical |
milestone: | none → pike-rc1 |
Changed in tripleo: | |
importance: | Critical → High |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/491600 /git.openstack. org/cgit/ openstack/ puppet- tripleo/ commit/ ?id=86a3261b4d0 8e2d8f8393b73ae 3d481b8ac736fd
Committed: https:/
Submitter: Jenkins
Branch: master
commit 86a3261b4d08e2d 8f8393b73ae3d48 1b8ac736fd
Author: Damien Ciabrini <email address hidden>
Date: Mon Aug 7 20:32:51 2017 +0000
Enable TLS configuration for containerized RabbitMQ
In non-containerized deployments, RabbitMQ can be configured to use TLS for
serving and mirroring traffic.
Fix the creation of the rabbitmq bundle resource to enable TLS when configured.
The key and cert are passed as other configuration files and must be copied by
Kolla at container startup.
Change-Id: Ia64d79462de701 2e5bceebf0ffe47 8a1cccdd6c9
Partial-Bug: #1709558