1718905 – tripleo-heat-templates: TripleO should configure server_certs_key_passphrase for Octavia

Bug 1718905 - tripleo-heat-templates: TripleO should configure server_certs_key_passphrase for Octavia

Summary: tripleo-heat-templates: TripleO should configure server_certs_key_passphrase ...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	openstack-tripleo-heat-templates
Sub Component:
Version:	14.0 (Rocky)
Hardware:	Unspecified
OS:	Unspecified
Priority:	medium
Severity:	medium
Target Milestone:	z4
Target Release:	14.0 (Rocky)
Assignee:	Nir Magnezi
QA Contact:	Bruna Bonguardo
Docs Contact:
URL:
Whiteboard:
Depends On:	1692830
Blocks:	1718940 1726260
TreeView+	depends on / blocked

Reported:	2019-06-10 14:15 UTC by Nir Magnezi
Modified:	2019-09-03 15:22 UTC (History)
CC List:	5 users (show)
Fixed In Version:	openstack-tripleo-heat-templates-9.3.1-0.20190513171740.el7ost
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:	1692830
Clones:	1718940 (view as bug list)
Environment:
Last Closed:	2019-09-03 15:22:42 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
OpenStack gerrit	647467	None	None	None	2019-06-10 14:15:23 UTC
OpenStack gerrit	661961	None	None	None	2019-06-10 14:15:23 UTC
Red Hat Product Errata	RHBA-2019:2617	None	None	None	2019-09-03 15:22:48 UTC

Description Nir Magnezi 2019-06-10 14:15:23 UTC

+++ This bug was initially created as a clone of Bug #1692830 +++

Description of problem:
=======================
A recent change[1] to Octavia added a parameter named server_certs_key_passphrase, which means that we should generate a password for it to avoid using the default value.

OctaviaServerCertsKeyPassphrase should be added to the list of generated password/secrets.

[1] https://review.openstack.org/#/q/I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2

Comment 7 Nir Magnezi 2019-06-22 22:05:33 UTC

This needs further work. More details at bug 1723051.

Comment 22 errata-xmlrpc 2019-09-03 15:22:42 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:2617

Note You need to log in before you can comment on or make changes to this bug.