tripleo

  1. Bug #1871663
  2. Comment #4

Comment 4 for bug 1871663

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to puppet-tripleo (stable/train)

Reviewed: https://review.opendev.org/724348
Committed: https://git.openstack.org/cgit/openstack/puppet-tripleo/commit/?id=3b5b944048cdb68bea703cbc68ce3eb9a797b650
Submitter: Zuul
Branch: stable/train

commit 3b5b944048cdb68bea703cbc68ce3eb9a797b650
Author: Dave Wilde (d34dh0r53) <email address hidden>
Date: Fri Apr 24 10:27:06 2020 -0500

    Ensure that the HAProxy certificate is updated

    While doing research for this bugzilla[1] I found that since the
    actual certificate PEM file is being bind mounted the mount is acting
    as a hard link to the inode of the PEM rather than just a pointer to
    it's location in the directory. When the new file is copied over the
    inode is updated but the container still maintains a link to the stale
    inode. This patch copies the contents of the certificate into the
    container so that the HUP of HAProxy will reload the certificate.

    [1]: https://bugzilla.redhat.com/show_bug.cgi?id=1765839

    Change-Id: Idf106c9ffa23ed00c497e1e5014e1b5718254320
    Closes-Bug: 1871663
    (cherry picked from commit 93c6bffb3b06c5978e5f3611e058b4afff08bdb9)