-
Bug
-
Resolution: Unresolved
-
Undefined
-
None
-
rhos-18.0.9
-
None
-
False
-
-
False
-
?
-
None
-
-
-
-
Moderate
To Reproduce Steps to reproduce the behavior:
- Deploy a barbican instance using barbican-operator
- Create a secret to hold only the KEK that is not the default osp-secret
- Edit the barbican CR (or openstackcontrolplane CR) to change the value of
spec:
simpleCryptoBackendSecret: not-osp-secret - This causes a reconcile of the barbican deployment wich results in new barbican Pods (expected)
- Now, edit not-osp-secret
- Changing this Secret should trigger a reconcile again to pick up the changes, but it appears that the operator is not watching the Secret because no reconcile is triggered and now new Pod is created.
Expected behavior
- Editing the secret triggers another reconciliation of the barbican CR
Screenshots
- Attached Image
Device Info (please complete the following information):
- Hardware Specs: [e.g. Apple M2 Pro Chip, 16 GB Memory, etc.]
- OS Version: [e.g. Mac OS 14.4.1, Fedora Linux 40]
- InstructLab Version: [output of \\\\{{{}ilab --version{}}}]
- Provide the output of these two commands:
- sudo bootc status --format json | jq .status.booted.image.image.image to print the name and tag of the bootc image, should look like registry.stage.redhat.io/rhelai1/bootc-intel-rhel9:1.3-1732894187
- ilab system info to print detailed information about InstructLab version, OS, and hardware – including GPU / AI accelerator hardware
Bug impact
- Please provide information on the impact of this bug to the end user.
Known workaround
- Please add any known workarounds.
Additional context
- <your text here>
- …
