yahoo-eng-team team mailing list archive

Thread
Date

[Bug 757772] Re: Cloudpipe doesn't update the crl in userdata when a cert is revoked

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: "Davanum Srinivas \(DIMS\)" <davanum@xxxxxxxxx>
Date: Mon, 08 Sep 2014 11:57:30 -0000
Reply-to: Bug 757772 <757772@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

looks like we don't have any "cloudpipe" code in Nova any more. marking
as invalid

** Changed in: nova
       Status: Confirmed => Invalid

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/757772

Title:
  Cloudpipe doesn't update the crl in userdata when a cert is revoked

Status in OpenStack Compute (Nova):
  Invalid

Bug description:
  When a certificate is revoked (using nova-manage for example), a new
  payload with an updated crl is not generated.  This means that the
  cloudpipe vpn will need to be restarted to to pick up new information.

  The revoke should update the user data with a new payload.  That way
  the cloudpipe instance can periodically check for a new crl and update
  it.  This would allow revokation without needing to restart the vpn.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/757772/+subscriptions