Description of problem: The HTTP port is configured to be the same as the HTTPS port (8081) and HTTPS is enabled. Previously this behavior would result in HTTPS only being enabled. However, with changes to Oyxgen this is no longer the case. Now exceptions are thrown because Pax thinks there is a conflict with both HTTP and HTTPs enabled on the same port and jetty NB never comes up. Version-Release number of selected component (if applicable): How reproducible: Always Steps to Reproduce: 1. Deploy ODL TLS container deployment 2. Deployment will fail at step 4 in compute, while 'Waiting for Netvirt to come up' 3. Go to a control/compute node and curl the internal_api ODL IP check URL like: curl -k --head -u admin:admin https://192.0.2.10:8081/restconf/operational/network-topology:network-topology/topology/netvirt:1 Actual results: 503 service error returned Expected results: Should return a web page response 200 OK. Additional info:
According to Pax documentation setting the http port to a negative number should disable http. I tried this out and it doesn't work. Jetty complains that it is an invalid value. The solution is to explicitly disable http in the pax config file via: org.apache.felix.http.enable = false
Checked with: puppet-opendaylight-8.1.0-0.20180321182556.45c4db7.el7ost.noarch
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2018:2086