Bug 1655676 - [OSP14] nova_wait_for_placement_service fails to connect to keystone in tls-everywhere deploy
Summary: [OSP14] nova_wait_for_placement_service fails to connect to keystone in tls-e...
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: openstack-tripleo-heat-templates
Version: 14.0 (Rocky)
Hardware: Unspecified
OS: Unspecified
urgent
urgent
Target Milestone: rc
: 14.0 (Rocky)
Assignee: Martin Schuppert
QA Contact: Archit Modi
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-12-03 16:43 UTC by Martin Schuppert
Modified: 2023-02-22 23:02 UTC (History)
8 users (show)

Fixed In Version: openstack-tripleo-heat-templates-9.0.1-0.20181013060898.el7ost
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2019-01-11 11:55:06 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
OpenStack gerrit 621619 0 'None' MERGED nova_compute fails to start in tls-everywhere configuration 2020-11-18 10:58:35 UTC
OpenStack gerrit 622197 0 'None' MERGED nova_compute fails to start in tls-everywhere configuration 2020-11-18 10:58:36 UTC
Red Hat Product Errata RHEA-2019:0045 0 None None None 2019-01-11 11:55:13 UTC

Description Martin Schuppert 2018-12-03 16:43:29 UTC 
Description of problem:

With tls-everywhere enabled connecting to keystone endpoint fails
to retrieve the URL for the placement endpoint as the certificate
can not be verified. While verification is disabled to check the
placement endpoint later, it is not to communicate with keystone.

Dec  3 15:41:18 overcloud-novacompute-0 journal: SSLError: SSL exception connecting to https://overcloud.internalapi.ooo.test:5000/v3/auth/tokens: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:579)
Dec  3 15:41:28 overcloud-novacompute-0 journal: ERROR:nova_wait_for_placement_service:Failed to get placement service endpoint!


Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 19 errata-xmlrpc 2019-01-11 11:55:06 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2019:0045
Note You need to log in before you can comment on or make changes to this bug.