From 63daa825a015cef749db6f89fb918d178902f66a Mon Sep 17 00:00:00 2001 From: Damien Ciabrini Date: Tue, 26 Sep 2017 15:23:11 +0200 Subject: Make containerized galera use mysql_network everywhere The containerized galera service generates a galera.cnf which uses short hostname to identify itself rather than the fqdn from the mysql_network (e.g. overcloud-x.internalapi.cloudname). This breaks when internal TLS is in use, because the mysql certificate does not reference this short hostname. Fix the appropriate hiera parameter to make it behave like the non-containerized galera service. Change-Id: I904cde38f2baeddab5178e8ad48d34a0c73629af Closes-Bug: #1719599 (cherry picked from commit e10aa591dc9155a2746df01279c4ba4f2133fd17) --- docker/services/pacemaker/database/mysql.yaml | 6 ++++++ 1 file changed, 6 insertions(+) (limited to 'docker/services/pacemaker/database/mysql.yaml') diff --git a/docker/services/pacemaker/database/mysql.yaml b/docker/services/pacemaker/database/mysql.yaml index 9dace271..e8562081 100644 --- a/docker/services/pacemaker/database/mysql.yaml +++ b/docker/services/pacemaker/database/mysql.yaml @@ -97,6 +97,12 @@ outputs: - 4567 - 4568 - 9200 + tripleo::profile::pacemaker::database::mysql_bundle::bind_address: + str_replace: + template: + "%{hiera('fqdn_$NETWORK')}" + params: + $NETWORK: {get_param: [ServiceNetMap, MysqlNetwork]} - if: - internal_tls_enabled -- cgit 1.2.3-korg