Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 2142684

Summary: Unable to delete heat stack if the auth_encryption_key changed
Product: Red Hat OpenStack Reporter: David Hill <dhill>
Component: openstack-heatAssignee: Brendan Shephard <bshephar>
Status: CLOSED ERRATA QA Contact: David Rosenfeld <drosenfe>
Severity: high Docs Contact:
Priority: high    
Version: 16.2 (Train)CC: bshephar, erpeters, joflynn, jschluet
Target Milestone: z5Keywords: Triaged
Target Release: 16.2 (Train on RHEL 8.4)   
Hardware: x86_64   
OS: All   
Whiteboard:
Fixed In Version: openstack-heat-13.1.1-2.20221201000659.7edd3f3.el8ost Doc Type: Bug Fix
Doc Text:
Before this update, a change in the `auth_encryption_key` parameter caused an inability to delete existing Heat stacks. With this update, Heat allows for changes in the `auth_encryption_key` parameter when deleting existing Heat stacks. Heat ignores objects that cannot be decrypted when deleting Heat stacks.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2023-04-26 12:17:18 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description David Hill 2022-11-14 21:22:03 UTC 
Description of problem:
Unable to delete heat stack if the auth_encryption_key changed ... in some cases, reverting to the previous auth_encryption_key (even temporarily) will cause more hassles than benefits.    Would it be possible to backport those commits [1][2] to either upstream/train or our internal gerrit?

[1] https://review.opendev.org/c/openstack/heat/+/780718
[2] https://review.opendev.org/c/openstack/heat/+/780701

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 1 Brendan Shephard 2022-11-15 02:46:37 UTC 
Upstream CI for stable/train is broken at the moment. In the interest of keeping things moving for RHOSP, I downstream only'd the change for now:
https://code.engineering.redhat.com/gerrit/c/heat/+/435272
Comment 15 errata-xmlrpc 2023-04-26 12:17:18 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat OpenStack Platform 16.2.5 (Train) bug fix and enhancement advisory), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:1763