New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[release-3.11] Correct service serving secret name in the annotation #11119
Conversation
Hi @bysnupy. Thanks for your PR. I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@bysnupy: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Can one of the admins verify this patch?
|
Service Serving Secret name is "router-metrics-tls", not "router-certs". "router-certs" should be created by wildcard certificates and not Service Serving Certificates Secret. - Fix: https://bugzilla.redhat.com/show_bug.cgi?id=1672011
@bysnupy: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this: Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@bysnupy: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this: Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@bysnupy: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@bysnupy: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this: Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@bysnupy: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/ok-to-test |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
/lgtm
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: bysnupy, vrutkovs The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Fix: "redeploy-router-certificates.yml" makes changes to wrong "service serving certificate secrets" annotation
Version:
v3.11
, and I've verified other version is also affected this, such asv3.3
~v3.10
.Description:
When
redeploy-router-certificates.yml
playbooks run for redeploy router certificates, bothrouter-certs
androuter-metrics-tls
certificatessecret
should be redeploy, and therouter-certs
should be also regenerated as wildcard certificates, it's notservice serving certificates
.router-metrics-tls
secret has been managed asservice serving certificates secret
. Ifrouter-certs
created asservice serving certificates
, it's affected the services to access usingwildcard certificates
router-certs
will be created again from includedopenshift_hosted/tasks/router.yml
tasks in theroles
.