]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph-ci.git/commit
projects / ceph-ci.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 92294b7) | patch
mgr/cephadm: add tombstones to persist certs info after mgr failover
authorRedouane Kachach <rkachach@ibm.com>
Thu, 23 Oct 2025 11:10:49 +0000 (13:10 +0200)
committerRedouane Kachach <rkachach@ibm.com>
Wed, 12 Nov 2025 12:46:05 +0000 (13:46 +0100)
commit57cb3b77936730252278ae1ed75ce31ff719a464
tree0885fc185f42eaeef95ee1d3529a04102cc415cetree | snapshot
parent92294b7a9df408124bedd7e6e28846a40e8b269acommit | diff
mgr/cephadm: add tombstones to persist certs info after mgr failover

Runtime-added TLS objects names were lost across mgr restarts/failovers
since they existed only in memory. We now write a tombstone to the KV
store whenever a new certificate is registered (empty map for
service/host scope; minimal JSON for global), so the object name is
restored during load().

Fixes: https://tracker.ceph.com/issues/73625
Resolves: rhbz#2404347

Signed-off-by: Redouane Kachach <rkachach@ibm.com>
(cherry picked from commit b9f81a682db2638698b09c6386d9f94c0fae7223)
src/pybind/mgr/cephadm/tests/test_certmgr.py diff | blob | history
src/pybind/mgr/cephadm/tlsobject_store.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.