Commit c8d3be79 authored by Helga Velroyen's avatar Helga Velroyen

QA: Add more verify steps in renew crypto QA

Currently the cluster is only verified after a series of
renew-crypto operations is carried out. This makes it hard
to trace errors back to originating call. This patch adds
a verifcation step after each renew-crypto call.
Signed-off-by: default avatarHelga Velroyen <helgav@google.com>
Reviewed-by: default avatarKlaus Aehlig <aehlig@google.com>
parent 4431be3e
......@@ -1205,14 +1205,17 @@ def TestClusterRenewCrypto():
"--new-cluster-certificate", "--new-confd-hmac-key",
"--new-rapi-certificate", "--new-cluster-domain-secret",
"--new-node-certificates"])
AssertCommand(["gnt-cluster", "verify"])
# Only renew node certificates
AssertCommand(["gnt-cluster", "renew-crypto", "--force",
"--new-node-certificates"])
AssertCommand(["gnt-cluster", "verify"])
# Restore RAPI certificate
AssertCommand(["gnt-cluster", "renew-crypto", "--force",
"--rapi-certificate=%s" % rapi_cert_backup])
AssertCommand(["gnt-cluster", "verify"])
finally:
AssertCommand(["rm", "-f", rapi_cert_backup])
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment