Bug 1842660
| Summary: | OCP 4.6 metadata.managedFields.fieldsType Invalid Value. Must be FieldsV1 | |||
|---|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Zachary Kayyali <zkayyali> | |
| Component: | kube-apiserver | Assignee: | Stefan Schimanski <sttts> | |
| Status: | CLOSED ERRATA | QA Contact: | Ke Wang <kewang> | |
| Severity: | medium | Docs Contact: | ||
| Priority: | medium | |||
| Version: | 4.5 | CC: | aos-bugs, mdelder, mfojtik, nschuetz | |
| Target Milestone: | --- | |||
| Target Release: | 4.6.0 | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| Whiteboard: | ||||
| Fixed In Version: | Doc Type: | No Doc Update | ||
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 1848437 1857655 (view as bug list) | Environment: | ||
| Last Closed: | 2020-10-27 16:03:15 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | ||||
| Bug Blocks: | 1849340, 1857655 | |||
Pinged certmanager author and Server Side Apply dev: https://kubernetes.slack.com/archives/C0EG7JC6T/p1591084548052700 From Slack:
> from what I understand there is a bug upstream as that field was added and marked required, breaking older clients talking to newer api servers. The issue comes about as pre 0.15, our own mutating webhook strips fields it does not recognise
> The advice I have been giving is to either update to cert-manager 0.15 (which uses k8s 1.18 client libs) or otherwise wait for a patch to make that field not required
Upstream issue: https://github.com/kubernetes/kubernetes/issues/90610 To be fixed in some 1.18 release. Workaround: use cert-manager 0.15+. Moving to z-release as this has to wait on upstream. We're seeing this issue on ACM 1.0.x on OCP 4.5 as well. cc @scuppett Created backport PRs from the upstream fix. Verified with OCP build 4.6.0-0.nightly-2020-06-30-020342. Open In the Red Hat OpenShift Container Platform console navigation, select Operators -> OperatorHub, searching 'Advanced', selected the 'Advanced Cluster Management for Kubernetes' icon, click on and install it. After finished, checking, $ oc get csv -A NAMESPACE NAME DISPLAY VERSION REPLACES PHASE open-cluster-management advanced-cluster-management.v1.0.1 Advanced Cluster Management for Kubernetes 1.0.1 Succeeded The ACM installed successfully as expected, so move the bug verified. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.6 GA Images), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:4196 |
Description of problem: There appears to be a compatibility issue in latest versions of Openshift 4.5 (Tested with 4.5.0-0.nightly-2020-05-28-044428) which may have been introduced as part of serverside apply. We are seeing the following error when creating a custom resource - $ oc get helmrelease multicluster-mongodb-59090 -o yaml ... status: conditions: - lastTransitionTime: "2020-05-28T18:18:17Z" status: "True" type: Initialized - lastTransitionTime: "2020-05-28T18:18:31Z" message: 'failed to install release: Certificate.certmanager.k8s.io "multicluster-mongodb-client-cert" is invalid: metadata.managedFields.fieldsType: Invalid value: "": must be `FieldsV1`' reason: InstallError status: "True" type: ReleaseFailed We are not seeing this error in previous versions of OCP. Link to GH Issue - https://github.com/open-cluster-management/backlog/issues/2378 Version-Release number of selected component (if applicable): 4.5.0-0.nightly-2020-05-28-044428 How reproducible: Install ACM operator on OCP 4.5 Steps to Reproduce: 1. 2. 3. Actual results: Expected results: ACM Installs successfully on OCP 4.5 Additional info: