Go to file

Marcelo de Castro Loebens d04d0210ae Add RPC call to audit local registry secrets

As part of rehoming, the keystone password for sysinv is updated for
the new SystemController value. A callback then comes from keystone
to sysinv in which the secrets that contain the password used to
authenticate to the docker registry for each namespace are updated.

However, since the rehoming playbook needs to restart sysinv right
away, a race condition where sysinv restarts before the keystone
callback is completely executed can leave old values in the secrets.

This review adds a RPC method to 'audit_local_registry_secrets',
which updates the credentials in the secrets. This RPC method will
be called from the rehoming ansible playbook, removing the
dependency on the keystone callback.

Test Plan:
PASS: Rehome SX subcloud
      Confirm that the registry secrets were updated

PASS: Enroll SX subcloud

Partial-bug: 2126680

Change-Id: I674111330587c2ecbf966771f4efa2c3b023158f
Signed-off-by: Marcelo de Castro Loebens <Marcelo.DeCastroLoebens@windriver.com>

2025-10-07 11:05:21 -04:00

api-ref/source

Merge "Added VIM host-audit to sysinv API/CLI"

2025-07-09 14:41:16 +00:00

config-gate

Update config-gate systemd service

2025-09-15 17:13:30 -04:00

controllerconfig

Remove upgrade scripts from config repo

2025-05-22 12:37:13 +00:00

devstack

Remove load, host upgrade, software upgrade tables and their references.

2025-03-18 09:53:11 -03:00

doc

Modify Api-ref for max_tx_rate/max_rx_rate

2025-06-16 22:52:51 -04:00

releasenotes

Remove host hardware sysinv profile

2021-10-18 18:01:40 -03:00

storageconfig

Add upgrade script to enable IPsec for multi-node upgrades

2024-08-09 15:05:38 +00:00

sysinv

Add RPC call to audit local registry secrets

2025-10-07 11:05:21 -04:00

tmp/patch-scripts/EXAMPLE_SYSINV/scripts

StarlingX open source release updates

2018-05-31 07:35:52 -07:00

tools/docker/images

Enable kubernetes SCTPSupport feature

2019-09-03 19:23:05 +00:00

tsconfig

Relocate SKIP_CEPH_OSD_WIPING Flag Removal

2025-07-08 10:11:41 -03:00

workerconfig

Store IPSec cert and keys in LUKS filesystem

2024-08-28 14:38:00 -03:00

.gitignore

Minor zuul and tox file cleanup after manifest re-org

2019-09-06 15:40:37 -05:00

.gitreview

OpenDev Migration Patch

2019-04-19 19:52:42 +00:00

.yamllint

clear yamllint errors under stx-config

2018-09-12 21:11:57 +08:00

.zuul.yaml

Remove load, host upgrade, software upgrade tables and their references.

2025-03-18 09:53:11 -03:00

bindep.txt

py3: Add py39 gate for sysinv

2021-08-27 08:39:06 -04:00

CONTRIBUTORS.wrs

StarlingX open source release updates

2018-05-31 07:35:52 -07:00

debian_build_layer.cfg

Add debian_build_layer.cfg file

2021-10-05 14:50:08 -04:00

debian_iso_image.inc

Setup debian build directory and ipsec-auth package

2024-01-26 09:46:14 -03:00

debian_pkg_dirs

Setup debian build directory and ipsec-auth package

2024-01-26 09:46:14 -03:00

debian_stable_wheels.inc

debian: Add sysinv wheel to the build

2022-11-21 13:33:24 +00:00

LICENSE

StarlingX open source release updates

2018-05-31 07:35:52 -07:00

README.rst

starlingx/config README improvement

2023-07-19 12:18:04 -03:00

test-requirements.txt

Calling an additional shell lint command from zuul

2021-06-03 17:35:50 -05:00

tox.ini

Fix tsconfig/root constraints file in tox.ini

2024-03-04 22:22:31 +00:00

README.rst

config

The starlingx/config repository handles the StarlingX configuration management services.

Its key component is the System Inventory Service (Sysinv), which provides the system command-line interface (CLI)¹.

This repository is not intended to be developed standalone, but rather as part of the StarlingX Source System, which is defined by the StarlingX manifest².

README.rst

config

References