Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-54272

HostControlPlane annotation scoping support missing from SecretJanitor

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Normal Normal
    • None
    • 4.18.z, 4.19.0
    • HyperShift
    • None
    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • None
    • Moderate
    • None
    • None
    • None
    • Done
    • Bug Fix
    • Hide
      * Previously, the `SecretJanitor` component of the HyperShift Operator was not scoped properly. As a consequence, token secrets accumulated. With this release, the HyperShift Operator supports proper scoping for the `SecretJanitor` component. As a result, secrets can be cleaned up appropriately. (link:https://issues.redhat.com/browse/OCPBUGS-54272[OCPBUGS-54272])
      Show
      * Previously, the `SecretJanitor` component of the HyperShift Operator was not scoped properly. As a consequence, token secrets accumulated. With this release, the HyperShift Operator supports proper scoping for the `SecretJanitor` component. As a result, secrets can be cleaned up appropriately. (link: https://issues.redhat.com/browse/OCPBUGS-54272 [ OCPBUGS-54272 ])
    • None
    • None
    • None
    • None

      Description of problem:

          secretJanitor was introduced in hypershift-operator, but scoping support was not included.

      Version-Release number of selected component (if applicable):

          

      How reproducible:

          Reproducible when using annotation scoping support with 2 instances of HO.

      Steps to Reproduce:

          1. Create a ROKS cluster managed by HO 4.17 or later
          2. Also deploy hypershift-operator with scoped annotation.
          3. Allow the clusters to remain for a time.
          

      Actual results:

          The token-* secrets do not get cleaned up properly and pile up as time goes on.

      Expected results:

          secret cleanup proceeds as usual

      Additional info:

          

              pamelachristie Pamela Schaefer
              pamelachristie Pamela Schaefer
              None
              None
              Pamela Schaefer Pamela Schaefer
              None
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: