openstack/openstack-ansible-os_neutron
Code Issues Proposed changes

Restart OVN on certificate changes

Browse Source 
In cases where certificates were regenerated for OVN, a service restart
is required in order to apply and use new certs.

We provide also a unique handler name to distinguish certs between ones
installed for neutron-server and OVN.

Depends-On: https://review.opendev.org/c/openstack/openstack-ansible/+/912768
Change-Id: Iedea6f1a67349bafecca5c792072fcd8f95cc546
(cherry picked from commit 14094eb311422953d59b14ed054428111aa04b59)
This commit is contained in:
Dmitriy Rabotyagov 2024-03-13 12:16:28 +01:00 committed by Jonathan Rosser
parent c9f72dc876
commit cb80079b3c
2 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
handlers/main.yml
View File

@ -149,6 +149,7 @@
- neutron_services['neutron-ovn-northd']['group'] in group_names and neutron_plugin_type == 'ml2.ovn'
listen:
- restart ovn service
- ovn cert installed
- name: Restart ovn controller
service:
@ -158,3 +159,4 @@
- neutron_services['neutron-ovn-controller']['group'] in group_names and neutron_plugin_type == 'ml2.ovn'
listen:
- restart ovn service
- ovn cert installed

1
tasks/main.yml
View File

@ -160,6 +160,7 @@
pki_regen_cert: "{{ neutron_ovn_pki_regen_cert }}"
pki_certificates: "{{ neutron_ovn_pki_certificates }}"
pki_install_certificates: "{{ neutron_ovn_pki_install_certificates }}"
pki_handler_cert_installed: "ovn cert installed"
when:
- neutron_plugin_type == 'ml2.ovn'
- neutron_ovn_ssl