-
Bug
-
Resolution: Unresolved
-
Undefined
-
None
-
4.22
-
None
-
None
-
False
-
-
None
-
None
-
None
-
None
-
None
-
Rejected
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
Description of problem:
If a router certificate secret is deleted, it does not get recreated. Restarting the ingress operator recreates the missing secret.
Version-Release number of selected component (if applicable):
How reproducible:
Very reproducible. On rare occasion, I've seen the certificate being recreated, but at worst it's reproducible 9 out of 10 tries.
Steps to Reproduce:
$ oc -n openshift-ingress get secrets NAME TYPE DATA AGE builder-dockercfg-pnxm8 kubernetes.io/dockercfg 1 138m default-dockercfg-dpb82 kubernetes.io/dockercfg 1 138m deployer-dockercfg-xq7ns kubernetes.io/dockercfg 1 138m router-certs-default kubernetes.io/tls 2 5s router-dockercfg-wnczq kubernetes.io/dockercfg 1 138m router-metrics-certs-default kubernetes.io/tls 2 145m router-stats-default Opaque 2 145m $ oc -n openshift-ingress delete secret router-certs-default secret "router-certs-default" deleted $ sleep 30; oc -n openshift-ingress get secrets NAME TYPE DATA AGE builder-dockercfg-pnxm8 kubernetes.io/dockercfg 1 140m default-dockercfg-dpb82 kubernetes.io/dockercfg 1 140m deployer-dockercfg-xq7ns kubernetes.io/dockercfg 1 140m router-dockercfg-wnczq kubernetes.io/dockercfg 1 140m router-metrics-certs-default kubernetes.io/tls 2 148m router-stats-default Opaque 2 148m
Actual results:
Expected results:
Additional info: