Run salt-ca state on master before update salt certs on minions Change-Id: I8aef88e008a6f926bdbf394e8e80dcde1ab02a80 Related-Prod: PROD-29824 (PROD:29824)

commit: d04fe94cbfe2b9be3178c90a900f5118a1be5a1a [log] [tgz]
author: Denis Egorenko <degorenko@mirantis.com> Fri Apr 26 15:13:16 2019 +0400
committer: Denis Egorenko <degorenko@mirantis.com> Fri Apr 26 15:18:20 2019 +0400
tree: 1b715906b4bb33c38d287e83f60dd8b7ee385e07
parent: a07e2ba849abd77e135405f8215c7de9233ab270 [diff] [blame]
diff --git a/upgrade-mcp-release.groovy b/upgrade-mcp-release.groovy
index 1f4aefb..e389937 100644
--- a/upgrade-mcp-release.groovy
+++ b/upgrade-mcp-release.groovy

@@ -451,6 +451,9 @@
                 }
 
                 // update minions certs
+                // call for `salt.minion.ca` state on related nodes to make sure
+                // mine was updated with required data after salt-minion/salt-master restart salt:minion:ca
+                salt.enforceState(venvPepper, "I@salt:minion:ca", 'salt.minion.ca', true)
                 salt.enforceState(venvPepper, "I@salt:minion", 'salt.minion.cert', true)
                 // updating users and keys
                 salt.enforceState(venvPepper, "I@linux:system", 'linux.system.user', true)
commit	d04fe94cbfe2b9be3178c90a900f5118a1be5a1a	[log] [tgz]
author	Denis Egorenko <degorenko@mirantis.com>	Fri Apr 26 15:13:16 2019 +0400
committer	Denis Egorenko <degorenko@mirantis.com>	Fri Apr 26 15:18:20 2019 +0400
tree	1b715906b4bb33c38d287e83f60dd8b7ee385e07
parent	a07e2ba849abd77e135405f8215c7de9233ab270 [diff] [blame]