Bug 1486759

Summary: TLS for Internal services for mysql/mariadb
Product: Red Hat OpenStack Reporter: atelang <atelang>
Component: puppet-tripleoAssignee: Damien Ciabrini <dciabrin>
Status: CLOSED ERRATA QA Contact: Udi Shkalim <ushkalim>
Severity: high Docs Contact:
Priority: high    
Version: 12.0 (Pike)CC: aavraham, amuller, apevec, chjones, chrisw, cyril, derekh, eglynn, fdinitto, fpercoco, jjoyce, josorior, jruzicka, jschluet, kbasil, lhh, mabrams, mbayer, mburns, nkinder, nyechiel, oblaut, pkilambi, rhel-osp-director-maint, rrasouli, sbaker, shardy, slinaber, srevivo, ssmolyak, tfreger, thiago, tvignaud, zaitcev, zbitter
Target Milestone: rcKeywords: TestOnly, Triaged
Target Release: 12.0 (Pike)   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1484535 Environment:
Last Closed: 2017-12-13 21:59:22 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1456743, 1484499, 1484506, 1484512, 1484517, 1484520, 1484521, 1484524, 1484535, 1484601, 1497981, 1506020, 1510144    
Bug Blocks: 1484542, 1484547, 1484550    

Comment 1 Michael Bayer 2017-09-07 16:57:58 UTC 
dupe of #1456743 ?
Comment 2 Keith Basil 2017-09-29 18:38:34 UTC 
Michael Bayer, updated with a depends on.  thanks.
Comment 4 Damien Ciabrini 2017-11-09 10:56:20 UTC 
Now that last bz to encrypt SST traffic [3,4] has move to POST, all the mysql and galera traffic is encrypted when Internal TLS is enabled.

Moving this tracker bz to POST accordingly.

[3] https://bugzilla.redhat.com/show_bug.cgi?id=1497981
[4] https://bugzilla.redhat.com/show_bug.cgi?id=1506020
Comment 7 Udi Shkalim 2017-12-05 12:17:10 UTC 
Verified 
TLS setup is deployed and passed HA sanity
Comment 10 errata-xmlrpc 2017-12-13 21:59:22 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2017:3462