Bug 1776700
Summary: | CCOProvisioningFailed alert is found in a fresh cluster | ||||||
---|---|---|---|---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Junqi Zhao <juzhao> | ||||
Component: | Cloud Credential Operator | Assignee: | Joel Diaz <jdiaz> | ||||
Status: | CLOSED ERRATA | QA Contact: | Xiaoli Tian <xtian> | ||||
Severity: | high | Docs Contact: | |||||
Priority: | high | ||||||
Version: | 4.3.0 | CC: | vrutkovs | ||||
Target Milestone: | --- | Keywords: | Regression | ||||
Target Release: | 4.3.0 | ||||||
Hardware: | Unspecified | ||||||
OS: | Unspecified | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | If docs needed, set a value | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2020-01-23 11:14:34 UTC | Type: | Bug | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | 1781109, 1783963 | ||||||
Bug Blocks: | |||||||
Attachments: |
|
Description
Junqi Zhao
2019-11-26 07:44:05 UTC
This is the same as Bug 1781109, setting up dependency on that one as the 4.4 bug. The issue would be intermittent. Fundamentally what is happening is that once an alert fires (which wouldn't happen on every installation), the alert would never clear. You can force an alert by adding a CredentialsRequest object that points to a namespace that doesn't exist. apiVersion: cloudcredential.openshift.io/v1 kind: CredentialsRequest metadata: name: my-cred-request namespace: openshift-cloud-credential-operator spec: secretRef: name: my-cred-request-secret namespace: namespace-does-not-exist providerSpec: apiVersion: cloudcredential.openshift.io/v1 kind: AWSProviderSpec statementEntries: - effect: Allow action: - s3:CreateBucket - s3:DeleteBucket resource: "*" After a few minutes you should see the alert. Now you can either create the namespace to clear the alert, or delete the CredentialsRequest so there is no longer a CredentialsRequest in a bad state, and you would expect the alert to clear, but it never does (at least it doesn't clear without the changes in the PR). *** Bug 1783963 has been marked as a duplicate of this bug. *** Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:0062 |