StarlingX System Configuration Management
Go to file
Carmen Rata 8cd5f76083 Fix subcloud going offline if certificates expire
K8s certificates rotation after they reach the expiry date requires
restart of sysinv services, both sysinv-conductor and sysinv-inv.
The sysinv services cache k8s client object and get credentials
from admin.conf. Restaring only the sysinv-conductor and missing the
restart of the sysinv api causes the certificates not to be updated
and this way affecting subcloud management functionality.
The fix updates the script "kube-cert-rotation.sh" to restart all
sysinv services and not only sysinv-conductor.
The script "kube-cert-rotation.sh" requires to be installed with
"700" permission.

Tests performed:
PASS: kube-cert-rotation.sh script gets installed correctly in
directory /usr/bin and is set with permissions "700".
PASS: kube-cert-rotation.sh script executes without errors when run
to renew K8s certificates.
PASS: After K8s certificates are renewed, all sysinv services get
restarted.
PASS: Executed successfully kube-cert-rotation.sh in AIO-SX and DC
system configurations.

Closes-Bug: 2002452
Signed-off-by: Carmen Rata <carmen.rata@windriver.com>
Change-Id: Ie74a47226280b9362558ebfa158a4bf91209e957
2023-01-20 02:57:01 +00:00
api-ref/source Add runtime reconfiguration of kubelet 2022-06-09 17:59:35 -04:00
config-gate debian: Remove package preset install for config 2022-09-27 08:20:41 +00:00
controllerconfig Merge "Fix vim endpoint port for SystemController" 2023-01-04 19:16:28 +00:00
devstack Deprecate old policy engine and restrict access 2022-08-10 11:18:38 -03:00
doc Fix tox-docs failing sphinx 2022-05-31 13:56:30 +00:00
releasenotes Remove host hardware sysinv profile 2021-10-18 18:01:40 -03:00
storageconfig Add storageconfig.service file 2022-10-13 10:27:23 -04:00
sysinv Fix subcloud going offline if certificates expire 2023-01-20 02:57:01 +00:00
tmp/patch-scripts/EXAMPLE_SYSINV/scripts StarlingX open source release updates 2018-05-31 07:35:52 -07:00
tools/docker/images Enable kubernetes SCTPSupport feature 2019-09-03 19:23:05 +00:00
tsconfig Update tox.ini to work with tox 4 2022-12-26 18:55:39 +00:00
workerconfig Configure k8s-coredump token on other nodes 2022-12-05 12:09:39 -03:00
.gitignore Minor zuul and tox file cleanup after manifest re-org 2019-09-06 15:40:37 -05:00
.gitreview OpenDev Migration Patch 2019-04-19 19:52:42 +00:00
.yamllint clear yamllint errors under stx-config 2018-09-12 21:11:57 +08:00
.zuul.yaml Update tox.ini to work with tox 4 2022-12-26 18:55:39 +00:00
CONTRIBUTORS.wrs StarlingX open source release updates 2018-05-31 07:35:52 -07:00
LICENSE StarlingX open source release updates 2018-05-31 07:35:52 -07:00
README.rst StarlingX open source release updates 2018-05-31 07:35:52 -07:00
bindep.txt py3: Add py39 gate for sysinv 2021-08-27 08:39:06 -04:00
centos_build_layer.cfg Build layering, add layer build config file 2019-10-15 12:29:05 +08:00
centos_dev_wheels.inc Config file changes to add 'tsconfig' after relocation from 'update' 2019-09-05 11:51:05 -04:00
centos_iso_image.inc Merge sysinv_fpga_agent with sysinv_agent 2022-10-03 14:12:28 -04:00
centos_pkg_dirs Merge sysinv_fpga_agent with sysinv_agent 2022-10-03 14:12:28 -04:00
centos_pkg_dirs_containers Config file changes for packages relocated to repo 'openstack-armada-app' 2019-09-05 10:42:00 -04:00
centos_stable_wheels.inc Config file changes to add 'tsconfig' after relocation from 'update' 2019-09-05 11:51:05 -04:00
debian_build_layer.cfg Add debian_build_layer.cfg file 2021-10-05 14:50:08 -04:00
debian_iso_image.inc Debian: config: update debian_iso_image.inc 2022-11-08 15:48:04 +08:00
debian_pkg_dirs Merge sysinv_fpga_agent with sysinv_agent 2022-10-03 14:12:28 -04:00
debian_stable_wheels.inc debian: Add sysinv wheel to the build 2022-11-21 13:33:24 +00:00
test-requirements.txt Calling an additional shell lint command from zuul 2021-06-03 17:35:50 -05:00
tox.ini Update tox.ini to work with tox 4 2022-12-26 18:55:39 +00:00

README.rst

stx-config

StarlingX Configuration Management