Code Review / apex-puppet-tripleo.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: dd17e35) | patch
Galera: add support for encrypted SST
authorDamien Ciabrini <dciabrin@redhat.com>
Wed, 27 Sep 2017 12:35:38 +0000 (14:35 +0200)
committerDamien Ciabrini <dciabrin@redhat.com>
Wed, 8 Nov 2017 12:53:16 +0000 (12:53 +0000)
commit4ccebee06614d2791b2cb82acfa8b5244e8b3942
treeb63efe36d2b23ae853eb23551c848724eadb87detree | snapshot
parentdd17e35242b027c3a5ebd23222d0abcac706806dcommit | diff
Galera: add support for encrypted SST

When internal TLS is enabled, generate a galera config that enable
encryption of SST rsync traffic.

The configuration relies on a new sst script wsrep_sst_rsync_tunnel,
which encapsulates rsync traffic in a socat-based encrypted tunnel.

Change-Id: I1d6ee8febb596b3ab9dcde3a85a028ee99b2798c
Depends-On: Ia857350ac451fc1bda6659d85019962d3a9d5617
Closes-Bug: #1719885
(cherry picked from commit 9fb617eaea607bc3615edeaf4608fded55045ebd)
manifests/profile/pacemaker/database/mysql.pp diff | blob | history
manifests/profile/pacemaker/database/mysql_bundle.pp diff | blob | history