openstack/openstack-ansible-os_neutron
Code Issues Proposed changes

Restart OVN on certificate changes

Browse Source 
In cases where certificates were regenerated for OVN, a service restart
is required in order to apply and use new certs.

We provide also a unique handler name to distinguish certs between ones
installed for neutron-server and OVN.

Depends-On: https://review.opendev.org/c/openstack/openstack-ansible/+/912768
Change-Id: Iedea6f1a67349bafecca5c792072fcd8f95cc546
(cherry picked from commit 14094eb311422953d59b14ed054428111aa04b59)
This commit is contained in:
Dmitriy Rabotyagov 2024-03-13 12:16:28 +01:00 committed by Jonathan Rosser
parent 356cdf8249
commit 05d9332cd0
2 changed files with 3 additions and 0 deletions
handlers
main.yml
tasks
main.yml

2
handlers/main.yml

@ -154,6 +154,7 @@
- neutron_services['neutron-ovn-northd']['group'] in group_names and neutron_plugin_type == 'ml2.ovn'
listen:
- restart ovn service
- ovn cert installed
- name: Restart ovn controller
service:
@ -163,3 +164,4 @@
- neutron_services['neutron-ovn-controller']['group'] in group_names and neutron_plugin_type == 'ml2.ovn'
listen:
- restart ovn service
- ovn cert installed

1
tasks/main.yml

@ -163,6 +163,7 @@
pki_regen_cert: "{{ neutron_ovn_pki_regen_cert }}"
pki_certificates: "{{ neutron_ovn_pki_certificates }}"
pki_install_certificates: "{{ neutron_ovn_pki_install_certificates }}"
pki_handler_cert_installed: "ovn cert installed"
when:
- neutron_plugin_type == 'ml2.ovn'
- neutron_ovn_ssl