]> git.apps.os.sepia.ceph.com Git - ceph-ci.git/commit
projects / ceph-ci.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d06d06f) | patch
mgr/cephadm: add tombstones to persist certs info after mgr failover
authorRedouane Kachach <rkachach@ibm.com>
Thu, 23 Oct 2025 11:10:49 +0000 (13:10 +0200)
committerRedouane Kachach <rkachach@ibm.com>
Thu, 23 Oct 2025 11:10:49 +0000 (13:10 +0200)
commitb9f81a682db2638698b09c6386d9f94c0fae7223
treef18aa372a651a789a1dfb6cbbbddeb403237322atree | snapshot
parentd06d06fda84363a57fe0c66339fcc2ebd254f4b1commit | diff
mgr/cephadm: add tombstones to persist certs info after mgr failover

Runtime-added TLS objects names were lost across mgr restarts/failovers
since they existed only in memory. We now write a tombstone to the KV
store whenever a new certificate is registered (empty map for
service/host scope; minimal JSON for global), so the object name is
restored during load().

Fixes: https://tracker.ceph.com/issues/73625
Signed-off-by: Redouane Kachach <rkachach@ibm.com>
src/pybind/mgr/cephadm/tests/test_certmgr.py diff | blob | history
src/pybind/mgr/cephadm/tlsobject_store.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.