tripleo

  1. Bug #1871663
  2. Comment #7

Comment 7 for bug 1871663

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to puppet-tripleo (stable/ussuri)

Reviewed: https://review.opendev.org/739537
Committed: https://git.openstack.org/cgit/openstack/puppet-tripleo/commit/?id=146674dcea0bca513a6d9ea0087f06c4c300a0bc
Submitter: Zuul
Branch: stable/ussuri

commit 146674dcea0bca513a6d9ea0087f06c4c300a0bc
Author: Dave Wilde (d34dh0r53) <email address hidden>
Date: Fri Apr 24 10:27:06 2020 -0500

    Ensure that the HAProxy certificate is updated

    While doing research for this bugzilla[1] I found that since the
    actual certificate PEM file is being bind mounted the mount is acting
    as a hard link to the inode of the PEM rather than just a pointer to
    it's location in the directory. When the new file is copied over the
    inode is updated but the container still maintains a link to the stale
    inode. This patch copies the contents of the certificate into the
    container so that the HUP of HAProxy will reload the certificate.

    [1]: https://bugzilla.redhat.com/show_bug.cgi?id=1765839

    Change-Id: Idf106c9ffa23ed00c497e1e5014e1b5718254320
    Closes-Bug: 1871663
    (cherry picked from commit c1e09672a52fea82d853d17145901109291ac1f1)