Container Linux Config Transpiler does not support ETCD_SSL_DIR

[devurandom]

trafficstars

Issue Report

Bug

Container Linux Version

$ cat /etc/os-release
NAME="Container Linux by CoreOS"
ID=coreos
VERSION=2023.4.0
VERSION_ID=2023.4.0
BUILD_ID=2019-02-26-0032
PRETTY_NAME="Container Linux by CoreOS 2023.4.0 (Rhyolite)"
ANSI_COLOR="38;5;75"
HOME_URL="https://coreos.com/"
BUG_REPORT_URL="https://issues.coreos.com"
COREOS_BOARD="amd64-usr"

Environment

What hardware/cloud provider/hypervisor is being used to run Container Linux?

Digital Ocean

Expected Behavior

Setting etcd.ssl_dir Container Linux Config parameter should set the ETCD_SSL_DIR environment variable in /etc/systemd/system/etcd-member.service.d/20-clct-etcd-member.conf, so that there is a way to influence which host directory /usr/lib/coreos/etcd-wrapper will mount at /etc/ssl/certs in the container.

Actual Behavior

The etcd Container Linux Config structure offers no way of influencing the ETCD_SSL_DIR environment variable.

[ajeddeloh]

As a workaround you can add a dropin unit to the etcd-member.service unit setting that environment variable.

This is because we currently only support the command line options from etcd (which can be specified by env vars as well) but the ETCD_SSL_DIR env var is actually used by the etcd-wrapper script, not etcd itself. This was an oversight.

We're pretty bogged down with Fedora CoreOS work at the moment, but if you want to submit a PR I can definitely get that through review and cut a new release with it.