bootstrap replay omits changes to user provided etcd CA cert
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Low
|
João Victor Portal |
Bug Description
Brief Description
-----------------
Following the split of etcd CA cert from kubernetes, a user provided etcd CA can be added to bootstrap localhost.yml overrides. But replay of the bootstrap playbook for this option is not working.
Severity
--------
Minor: System/Feature is usable with minor issue, workaround available
Steps to Reproduce
------------------
Bootstrap without user provided etcd CA cert in localhost.yml. After successful bootstrap, add the following (example) options to localhost.yml and then replay the bootstrap playbook:
etcd_root_ca_key: /home/sysadmin/
etcd_root_ca_cert: /home/sysadmin/
Expected Behavior
------------------
When replaying ansible bootstrap a change of user provided etcd CA should be applied.
Actual Behavior
----------------
When replaying ansible bootstrap with a change to user provided CA cert, the bootstrap code omits the change if there is not also a change to other networking parameters.
Reproducibility
---------------
Reproducible, when replaying and bootstrap parameters do not include other network changes.
System Configuration
-------
Any
Branch/Pull Time/Commit
-------
StarlingX master branch, Oct 26, 2021
Last Pass
---------
N/A
Timestamp/Logs
--------------
N/A
Test Activity
-------------
Feature test of user provided etcd CA cert
Workaround
----------
Re-install the iso to make changes to bootstrap when user provided etcd CA is to be used.
Changed in starlingx: | |
assignee: | nobody → Michel Thebeau [WIND] (mthebeau) |
Changed in starlingx: | |
assignee: | Michel Thebeau [WIND] (mthebeau) → João Victor Portal (jvictorp) |
tags: | added: stx.security |
tags: | added: stx.6.0 |
minor / low priority - issue related to https:/ /storyboard. openstack. org/#!/ story/2008833