Secrets associated with cert manager certificates deleted during upgrade
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Jerry Sun |
Bug Description
Brief Description
-----------------
Cert manager certificates secrets are deleted during an upgrade of cert manager.
This causes all certificates to be re-issued during an upgrade
Severity
--------
Major: System/Feature is usable but degraded
Steps to Reproduce
------------------
Perform a system upgrade. Check the creation timestamp of secrets tied to cert manager certificates, they are the same as when cert manager was updated.
Expected Behavior
------------------
Secrets for cert manager certificates are not deleted during cert manager upgrade process
Actual Behavior
----------------
Secrets are deleted, forcing certificates to be renewed
Reproducibility
---------------
Intermittent. Likes to happen more often on busy systems like large DC deployments
System Configuration
-------
Two node system
Branch/Pull Time/Commit
-------
2022-08-11
Changed in starlingx: | |
assignee: | nobody → Jerry Sun (jerry-sun-u) |
tags: | added: stx.8.0 stx.security |
Changed in starlingx: | |
importance: | Undecided → Medium |
Fix proposed to branch: master /review. opendev. org/c/starlingx /config/ +/852991
Review: https:/