Bug 1486759 – TLS for Internal services for mysql/mariadb

Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.

Bug 1486759 - TLS for Internal services for mysql/mariadb

Summary:	TLS for Internal services for mysql/mariadb

Status:	CLOSED ERRATA

Aliases:	None

Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	puppet-tripleo (Show other bugs)
Sub Component:
Version:	12.0 (Pike)
Hardware:	Unspecified Unspecified

Priority	high Severity high
Target Milestone:	rc
Target Release:	12.0 (Pike)
Assigned To:	Damien Ciabrini
QA Contact:	Udi Shkalim
Docs Contact:

URL:
Whiteboard:
Keywords:	TestOnly, Triaged

Depends On:	1484517 1484601 1510144 1456743 1484499 1484506 1484512 1484520 1484521 1484524 1484535 1497981 1506020
Blocks:	1484542 1484547 1484550
	Show dependency tree / graph

Reported:	2017-08-30 09:45 EDT by atelang
Modified:	2018-02-05 14:12 EST (History)
CC List:	35 users (show)

See Also:
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Story Points:	---
Clone Of:	1484535
Environment:
Last Closed:	2017-12-13 16:59:22 EST
Type:	Bug
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

External Trackers
Tracker	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHEA-2017:3462	normal	SHIPPED_LIVE	Red Hat OpenStack Platform 12.0 Enhancement Advisory	2018-02-15 20:43:25 EST

Groups: None (edit)

Comment 1 Michael Bayer 2017-09-07 12:57:58 EDT

dupe of #1456743 ?

Comment 2 Keith Basil 2017-09-29 14:38:34 EDT

Michael Bayer, updated with a depends on.  thanks.

Comment 4 Damien Ciabrini 2017-11-09 05:56:20 EST

Now that last bz to encrypt SST traffic [3,4] has move to POST, all the mysql and galera traffic is encrypted when Internal TLS is enabled.

Moving this tracker bz to POST accordingly.

[3] https://bugzilla.redhat.com/show_bug.cgi?id=1497981
[4] https://bugzilla.redhat.com/show_bug.cgi?id=1506020

Comment 7 Udi Shkalim 2017-12-05 07:17:10 EST

Verified 
TLS setup is deployed and passed HA sanity

Comment 10 errata-xmlrpc 2017-12-13 16:59:22 EST

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2017:3462

Note You need to log in before you can comment on or make changes to this bug.

aavraham
amuller
apevec
chjones
chrisw
cyril
derekh
eglynn
fdinitto
fpercoco
jjoyce
josorior
jruzicka
jschluet
kbasil
lhh
mabrams
mbayer
mburns
nkinder
nyechiel
oblaut
pkilambi
rhel-osp-director-maint
rrasouli
sbaker
shardy
slinaber
srevivo
ssmolyak
tfreger
thiago
tvignaud
zaitcev
zbitter