Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: 4.16
Component/s: kube-apiserver
Labels:
None

Activity Type:
Quality / Stability / Reliability
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Story Points:
None
Severity:
Moderate
Regression:
None

Target Backport Versions:
None
Target Version:
None
Release Blocker:
None
Sprint:
None

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Impact Score:

Release Note Status:
None
Release Note Type:
None
Release Note Text:
None

Escape Reason:
None
Escape Impact:
None
Corrective Measures:
None
SDLC stage when should've been found:
None

Description of problem:

    This hit an issue where the kube-apiserver operator created certs over and over again in configmap cm  kube-apiserver-aggregator-client-ca in project  openshift-config-managed, which was copied to other configmaps to be loaded up by the kube-apiserver. 
 The operator should have logic to prevent too man certs being created, there should be some check to make sure that the cert file does not go over the limit of 65,535 bytes

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:

    1.
    2.
    3.

Actual results:

Expected results:

Additional info:

Assignee:: Unassigned

Reporter:: Harshit Mongia

Need Info From:: None

Contributors:: None

QA Contact:: Ke Wang

Doc Contact:: None

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2025/10/27 6:25 AM

Updated:: 2025/10/27 6:50 AM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates