Uploaded image for project: 'Cert Manager support for Red Hat OpenShift'
  1. Cert Manager support for Red Hat OpenShift
  2. CM-412

CertManager CR does not create the cert manager pods deployments when created by OpenShift GitOps

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • cert-manager-1.14
    • None
    • False
    • Hide

      None

      Show
      None
    • False
    • Important

      Steps to reproduce:

      • Create a fresh OCP 4.16.16 cluster
      • Install OpenShift GitOps
      • Create the cert-manager Application:  
        oc create -f application-cert-manager.yaml

        See application-cert-manager.yaml attachment. The application includes the cert-manager installation and CertManager CR instanciation.

      • Wait ArgoCD to complete the application deployment.
      • Check if pods are deployed on cert-manager project:  
        oc get po -n cert-manager

        The list is empty because the Deployments have not been automatically created after ArgoCD create the CertManager CR instance.

      If we check CertManager:

      oc describe certmanager cluster

      we can see no degraded conditions but ready replicas are set to 0:

      Name:         cluster
Namespace:    
Labels:       app.kubernetes.io/instance=cert-manager
Annotations:  argocd.argoproj.io/sync-options: SkipDryRunOnMissingResource=true
API Version:  operator.openshift.io/v1alpha1
Kind:         CertManager
Metadata:
  Creation Timestamp:  2024-10-22T11:01:35Z
  Generation:          1
  Resource Version:    59967
  UID:                 407f4e8c-aa33-4f2e-9e93-9bbd514f33be
Spec:
  Controller Config:
    Override Args:
      --dns01-recursive-nameservers-only
      --dns01-recursive-nameservers=1.1.1.1:53
  Log Level:           Normal
  Operator Log Level:  Normal
Status:
  Conditions:
    Last Transition Time:  2024-10-22T11:01:41Z
    Reason:                AsExpected
    Status:                False
    Type:                  cert-manager-cainjector-deploymentDegraded
    Last Transition Time:  2024-10-22T11:01:41Z
    Reason:                AsExpected
    Status:                False
    Type:                  cert-manager-controller-deploymentDegraded
    Last Transition Time:  2024-10-22T11:01:41Z
    Reason:                AsExpected
    Status:                False
    Type:                  cert-manager-webhook-deploymentDegraded
    Last Transition Time:  2024-10-22T11:01:47Z
    Reason:                AsExpected
    Status:                False
    Type:                  cert-manager-cainjector-static-resources-Degraded
    Last Transition Time:  2024-10-22T11:01:48Z
    Reason:                AsExpected
    Status:                False
    Type:                  cert-manager-webhook-static-resources-Degraded
    Last Transition Time:  2024-10-22T11:02:14Z
    Reason:                AsExpected
    Status:                False
    Type:                  cert-manager-controller-static-resources-Degraded
  Ready Replicas:          0
Events:                    <none>

      Must-gather of OCP and OpenShift Gitop is attached

        1. application-cert-manager.yaml
          0.4 kB
          Laurent TOURREAU
        2. must-gather.tar.gz
          26.66 MB
          Laurent TOURREAU

              Unassigned Unassigned
              laurent.tourreau Laurent TOURREAU
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: