Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Certificates are not propagated on some OpenShift clusters which results in workspace startup failures #22026

Closed
Tracked by #22027
ibuziuk opened this issue Mar 2, 2023 · 1 comment
Closed
Tracked by #22027

Certificates are not propagated on some OpenShift clusters which results in workspace startup failures #22026

ibuziuk opened this issue Mar 2, 2023 · 1 comment
Labels
area/che-operator Issues and PRs related to Eclipse Che Kubernetes Operator kind/bug Outline of a bug - must adhere to the bug report template. severity/P1 Has a major impact to usage or development of the system. sprint/next
Milestone
7.63

Comments

@ibuziuk
Copy link
Member

ibuziuk commented Mar 2, 2023

Describe the bug

Certificates are not propagated on some OpenShift clusters which results in workspace startup failures

Che version

7.61@latest

Steps to reproduce

  1. provision 4.12 cluster using cluster bot launch 4.12
  2. use next version of chectl chectl version update / chectl update next
  3. deploy latest Eclipse Che chectl server:deploy --platform openshift
  4. once operators are provisioned create a workspace using https://github.com/che-incubator/quarkus-api-example
  5. ERROR workspace failed to start

image

go to the dashboard pod and check public-certs folder - it is empty (no certificate is propagated to the pod):

sh-4.4$ ls
bin  boot  data  dev  entrypoint.sh  etc  home  lib  lib64  logs  lost+found  media  mnt  opt  proc  public-certs  root  run  sbin  srv  sys  tmp  usr  var
sh-4.4$ cd public-certs/
sh-4.4$ ls
sh-4.4$

Expected behavior

the certificate is propagated to all operands including dashboard

Runtime

OpenShift

Screenshots

No response

Installation method

chectl/next

Environment

Amazon

Eclipse Che Logs

No response

Additional context

NOTE that the issue is NOT reproducible with launch 4.12 aws only with launch 4.12 hypershift cluster
@ibuziuk ibuziuk added kind/bug Outline of a bug - must adhere to the bug report template. sprint/next area/che-operator Issues and PRs related to Eclipse Che Kubernetes Operator severity/P1 Has a major impact to usage or development of the system. labels Mar 2, 2023
@ibuziuk ibuziuk mentioned this issue Mar 2, 2023
Closed
45 tasks
@azatsarynnyy
Copy link
Member

Shouldn't a certificate be at /tmp/che/secret/ca.crt?

@tolusha tolusha mentioned this issue Mar 10, 2023
Merged
10 tasks
@tolusha tolusha added this to the 7.63 milestone Mar 14, 2023
@tolusha tolusha closed this as completed Mar 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/che-operator Issues and PRs related to Eclipse Che Kubernetes Operator kind/bug Outline of a bug - must adhere to the bug report template. severity/P1 Has a major impact to usage or development of the system. sprint/next
Projects
None yet
Milestone
7.63
Development

No branches or pull requests
3 participants
@ibuziuk @azatsarynnyy @tolusha