Descriptionprovider/common: attempt all addresses in waitSSH
We now attempt all addresses during waitSSH, and
refresh the addresses periodically. Providers may
return private addresses; for some clouds this is
what we want to use, and for others it is not.
As private addresses are relative, one may be able
to connect to the private address and yet be
connecting to a machine other than the intended
one. For this reason, we emit the machine's nonce
during cloud-init to a file (/var/lib/juju/nonce.txt),
and verify it during waitSSH.
The nonce verification also serves to synchronise
cloud-init and sshinit. Since the file is written
as the last thing cloud-init does, we can safely
run sshinit once it has been verified.
Fixes #1258240
Fixes #1259942
https://code.launchpad.net/~axwalk/juju-core/lp1258240-bootstrap-refresh-dnsname-take2/+merge/198867
(do not edit description out of merge proposal)
Patch Set 1 #
Total comments: 2
Patch Set 2 : provider/common: attempt all addresses in waitSSH #
Total comments: 1
Patch Set 3 : provider/common: attempt all addresses in waitSSH #Patch Set 4 : provider/common: attempt all addresses in waitSSH #
Total comments: 1
Patch Set 5 : provider/common: attempt all addresses in waitSSH #Patch Set 6 : provider/common: attempt all addresses in waitSSH #Patch Set 7 : provider/common: attempt all addresses in waitSSH #
Total comments: 26
Patch Set 8 : provider/common: attempt all addresses in waitSSH #Patch Set 9 : provider/common: attempt all addresses in waitSSH #Patch Set 10 : provider/common: attempt all addresses in waitSSH #Patch Set 11 : provider/common: attempt all addresses in waitSSH #
MessagesTotal messages: 19
|