Bug 1897415
Summary: | [Bare Metal - Ironic] provide the ability to set the cipher suite for ipmitool when doing a Bare Metal IPI install | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | August Simonelli <asimonel> |
Component: | Bare Metal Hardware Provisioning | Assignee: | Iury Gregory Melo Ferreira <imelofer> |
Bare Metal Hardware Provisioning sub component: | ironic | QA Contact: | Raviv Bar-Tal <rbartal> |
Status: | CLOSED ERRATA | Docs Contact: | |
Severity: | high | ||
Priority: | high | CC: | beth.white, imelofer, rbartal, tsedovic |
Version: | 4.6 | Keywords: | Triaged |
Target Milestone: | --- | ||
Target Release: | 4.8.0 | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: |
Cause:
Newer ipmitool packages have cipher suite default to 17.
Consequence: Old hardware that doesn't support cipher suite 17 will fail during deployment.
Fix: Ironic is now able to fallback to cipher suite 3 in case cipher suite 17 is not supported by the hardware.
Result: Deployments in old hardware using ipmitool should succeed
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2021-07-27 22:34:10 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
August Simonelli
2020-11-13 02:52:54 UTC
Our plan is to update Ironic with a new configuration option that will allow the downgrade of the cipher suite automatically. @August Simonelli can you please provide me some logs that shows the exception that occurs? Thanks! Code was reviewed by QA and bug moved to verify so it will not block the code for the release. If issue still exist please open new BZ and contact us Thanks Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: OpenShift Container Platform 4.8.2 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2021:2438 |