Uploaded image for project: 'OpenShift Virtualization'
  1. OpenShift Virtualization
  2. CNV-39100

After enabling AAQ there is an error 'x509: certificate signed by unknown authority' occurs when executing 'oc logs' or 'oc exec' commands

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Blocker Blocker
    • CNV v4.15.2
    • CNV v4.15.0
    • CNV Virtualization
    • None
    • CNV Virtualization Sprint 251
    • No

      Description of problem:

      After several hours followed by enabling AAQ, observing this error when trying to get pod logs or execute `oc exec` command:

Error from server: Get "https://10.10.133.4:10250/containerLogs/openshift-cnv/mtq-operator-64f9566ccc-45848/mtq-operator": tls: failed to verify certificate: x509: certificate signed by unknown authority

Same error for `oc exec` command

Disabling AAQ resolves the issue

       

      Version-Release number of selected component (if applicable):

      4.15

      How reproducible:

       

      Steps to Reproduce:

      1. enable AAQ
2. (not sure) Create ARQ and get some VMs in SchedulingGated state
3. wait for several hrs (10+)
4. run "oc logs _pod_"

      Actual results:

      Can't execute `oc logs` or `oc exec` commands for any pods, error: "x509: certificate signed by unknown authority"

      Expected results:

      "oc logs" command sucessfully executed

      Additional info:

      It seems the UI also affected - after login to web console the page is constantly reloads

       

              iholder@redhat.com Itamar Holder
              dshchedr@redhat.com Denys Shchedrivyi
              Denys Shchedrivyi Denys Shchedrivyi
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: