Description of problem:
noobaa-operator (a component in the OpenShift Container Storage product) is relying on the existence of the service-ca.cert file on its containers in order to function properly.
As of OCP 4.5.0 this file is not mounted anymore at var/run/secrets/kubernetes.io/serviceaccount/service-ca.crt or at any other place
A search on previous versions documentation (4.4 and 4.3) does not mention this feature as being deprecated.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Deploy an OCS cluster
2. use "oc -n openshift-storage rsh $(oc -n openshift-storage get pod -o name -l noobaa-operator)" to open a remote session to a noobaa-operator container.
3. use "ls -l var/run/secrets/kubernetes.io/serviceaccount" to verify that the file does not exist.
The file does not exist in the mentioned location
The file should be mounted at that location
Why reverting? If reverting, then one of this bug and another bug 1813894 will be NOTA.
Ah, got it in bug 1813894#c12 . Let me hold on the 4.5 release note https://github.com/openshift/openshift-docs/issues/19847#issuecomment-641007166
Given that this bz represents an unreleased regression, no doc text is required.
*** Bug 1847174 has been marked as a duplicate of this bug. ***
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.