1. Proposed title of this feature request

Add warning for missing tls.crt key in destination-ca-certificate secret used for reencrypt ingress creation

2. What is the nature and description of the request?

Creating a re-encrypt route using ingress needs to create a destination ca certificate secret. If the destination ca certificate secret is created with a key other than tls.crt, then the resulting route does not pick the destination ca certificate, and no warning/error is shown to the users on the OCP web console or in OCP CLI  indicating missing tls.crt key in the secret.

For example, if ca-bundle.crt key missing on a trusted CA config map used for cluster-wide proxy then the network CO throws an error/warning about the missing key in the config map.

3. Why does the customer need this? (List the business requirements here)

Having a meaningful warning can help customers as well as the support engineers to fix the issue. For example, "missing tls.crt in secret <secret_name>".

This helps improve OCP as a product where the cluster itself shows what is desired and what is missing.

4. List any affected packages or components.

Network Edge