Bug 1768901 - Emit events when certs are rotated
Summary: Emit events when certs are rotated
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: kube-controller-manager
Version: 4.2.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
: 4.2.z
Assignee: Maciej Szulik
QA Contact: zhou ying
URL:
Whiteboard:
Depends On: 1771995
Blocks:
TreeView+ depends on / blocked
 
Reported: 2019-11-05 13:55 UTC by Maciej Szulik
Modified: 2020-05-13 11:07 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: No Doc Update
Doc Text:
Clone Of:
: 1771995 (view as bug list)
Environment:
Last Closed: 2020-05-13 11:07:17 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github openshift library-go pull 569 0 'None' closed Bug 1768901: [release-4.2] Emit event when certificate gets updated 2020-05-26 23:43:32 UTC
Red Hat Product Errata RHBA-2020:2023 0 None None None 2020-05-13 11:07:37 UTC

Description Maciej Szulik 2019-11-05 13:55:12 UTC
When cert-rotation happens we have no clear information when and why it happened, or why it failed, or what kind of problems it had.

Comment 8 Maciej Szulik 2019-11-26 21:22:01 UTC
This should be fixed when https://github.com/openshift/cluster-kube-controller-manager-operator/pull/314 merges

Comment 12 zhou ying 2020-05-06 06:29:31 UTC
Confrimed with payload: 4.2.0-0.nightly-2020-05-05-113123, the issue has fixed:

[root@dhcp-140-138 roottest]# oc get clusterversion 
NAME      VERSION                             AVAILABLE   PROGRESSING   SINCE   STATUS
version   4.2.0-0.nightly-2020-05-05-113123   True        False         102m    Cluster version is 4.2.0-0.nightly-2020-05-05-113123

[root@dhcp-140-138 roottest]# oc get events |grep -i certificate
44m         Normal    CertificateUpdated            pod/kube-controller-manager-ip-10-0-141-223.us-east-2.compute.internal   Wrote updated configmap: openshift-kube-controller-manager/client-ca
41m         Normal    CertificateUpdated            pod/kube-controller-manager-ip-10-0-141-223.us-east-2.compute.internal   Wrote updated configmap: openshift-kube-controller-manager/aggregator-client-ca

Comment 14 errata-xmlrpc 2020-05-13 11:07:17 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:2023


Note You need to log in before you can comment on or make changes to this bug.