QA: Add more verify steps in renew crypto QA

Currently the cluster is only verified after a series of renew-crypto operations is carried out. This makes it hard to trace errors back to originating call. This patch adds a verifcation step after each renew-crypto call. Signed-off-by: Helga Velroyen <helgav@google.com> Reviewed-by: Klaus Aehlig <aehlig@google.com>

QA: Add more verify steps in renew crypto QA
Currently the cluster is only verified after a series of renew-crypto operations is carried out. This makes it hard to trace errors back to originating call. This patch adds a verifcation step after each renew-crypto call. Signed-off-by: Helga Velroyen <helgav@google.com> Reviewed-by: Klaus Aehlig <aehlig@google.com>
c8d3be79 · Helga Velroyen · 4431be3e · c8d3be79
Commit c8d3be79 authored May 22, 2015 by Helga Velroyen
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 0 deletions

qa/qa_cluster.py qa/qa_cluster.py +3 -0

No files found.
--- a/qa/qa_cluster.py
+++ b/qa/qa_cluster.py
@@ -1205,14 +1205,17 @@ def TestClusterRenewCrypto():
                   "--new-cluster-certificate", "--new-confd-hmac-key",
                   "--new-rapi-certificate", "--new-cluster-domain-secret",
                   "--new-node-certificates"])
+    AssertCommand(["gnt-cluster", "verify"])

    # Only renew node certificates
    AssertCommand(["gnt-cluster", "renew-crypto", "--force",
                   "--new-node-certificates"])
+    AssertCommand(["gnt-cluster", "verify"])

    # Restore RAPI certificate
    AssertCommand(["gnt-cluster", "renew-crypto", "--force",
                   "--rapi-certificate=%s" % rapi_cert_backup])
+    AssertCommand(["gnt-cluster", "verify"])
  finally:
    AssertCommand(["rm", "-f", rapi_cert_backup])