-
Notifications
You must be signed in to change notification settings - Fork 233
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Dummy ca-bundle.crt for non-OpenShift #2007
Dummy ca-bundle.crt for non-OpenShift #2007
Conversation
If we're not running on OpenShift, the magic label doesn't cause OpenShift to populate the merged CA bundle ConfigMap. This would cause the ConfigMap mount to fail, and provisions wouldn't start. This commit defaults that key to empty so the file will always exist and the mount will work. (Note that `update-ca-trust` properly ignores an empty file.) HIVE-2210
/assign @abutcher |
@2uasimojo: all tests passed! Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
Codecov Report
Additional details and impacted files@@ Coverage Diff @@
## master #2007 +/- ##
==========================================
- Coverage 57.99% 57.99% -0.01%
==========================================
Files 186 186
Lines 25361 25368 +7
==========================================
+ Hits 14709 14711 +2
- Misses 9412 9415 +3
- Partials 1240 1242 +2
|
Tested image quay.io/2uasimojo/hive:2210-dummy-cabundle on a kind cluster and was able to create and destroy a cluster.
I ran into issues due to kind running kube v1.24+ since ServiceAccount token secrets are not automatically created . I worked around that by creating the necessary secrets but that's a separate issue we should resolve in For example, apiVersion: v1
kind: Secret
metadata:
name: hiveadmission-sa-token
namespace: hive
annotations:
kubernetes.io/service-account.name: "hiveadmission"
type: kubernetes.io/service-account-token /lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: 2uasimojo, abutcher The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
We've now got https://issues.redhat.com/browse/HIVE-2219 to address those missing secrets. |
If we're not running on OpenShift, the magic label doesn't cause OpenShift to populate the merged CA bundle ConfigMap. This would cause the ConfigMap mount to fail, and provisions wouldn't start. This commit defaults that key to empty so the file will always exist and the mount will work. (Note that
update-ca-trust
properly ignores an empty file.)HIVE-2210