-
Bug
-
Resolution: Done
-
Blocker
-
None
-
None
-
1
-
False
-
None
-
False
-
-
-
Tracing Sprint # 267 - Release
Version of components:
jaeger-operator.v1.65.0
OCP 4.18
Description of the issue:
When a Jaeger allinone instance is created, the Jaeger allinone pod fails with the following error.
% oc logs jaeger-allinone-65f8f55bbc-75zkn Defaulted container "jaeger" out of: jaeger, oauth-proxy 2025/02/17 09:09:37 maxprocs: Leaving GOMAXPROCS=4: CPU quota undefined ******************************************************************************* 🛑 WARNING: End-of-life Notice for Jaeger v1 You are currently running a v1 version of Jaeger, which is deprecated and will reach end-of-life on December 31st, 2025. This means there will be no further development, bug fixes, or security patches for v1 after this date. We strongly recommend migrating to Jaeger v2 for continued support and access to new features. For detailed migration instructions, please refer to the official Jaeger documentation: https://www.jaegertracing.io/docs/latest/migration/ Tracking issue: https://github.com/jaegertracing/jaeger/issues/6321 🛑 WARNING: End-of-life Notice for Jaeger v1 ******************************************************************************* 2025/02/17 09:09:37 application version: git-commit=b3be0117dc69484a47addb38aa18f599315622da, git-version=v1.65.0, build-date=2025-01-08T00:08:50Z Error: unknown flag: --reporter.grpc.tls.ca Usage: jaeger-all-in-one [flags] jaeger-all-in-one [command] Available Commands: completion Generate the autocompletion script for the specified shell docs Generates documentation env Help about environment variables. help Help about any command print-config Print names and values of configuration options status Print the status. version Print the version. Flags: --admin.http.host-port string The host:port (e.g. 127.0.0.1:14269 or :14269) for the admin server, including health check, /metrics, etc. (default ":14269") --admin.http.tls.cert string Path to a TLS Certificate file, used to identify this server to clients --admin.http.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --admin.http.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --admin.http.tls.enabled Enable TLS on the server --admin.http.tls.key string Path to a TLS Private Key file, used to identify this server to clients --admin.http.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --admin.http.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.enable-span-size-metrics Enables metrics based on processed span size, which are more expensive to calculate. --collector.grpc-server.host-port string The host:port (e.g. 127.0.0.1:12345 or :12345) of the collector's gRPC server (default ":14250") --collector.grpc-server.max-connection-age duration The maximum amount of time a connection may exist. Set this value to a few seconds or minutes on highly elastic environments, so that clients discover new collector nodes frequently. See https://pkg.go.dev/google.golang.org/grpc/keepalive#ServerParameters (default 0s) --collector.grpc-server.max-connection-age-grace duration The additive period after MaxConnectionAge after which the connection will be forcibly closed. See https://pkg.go.dev/google.golang.org/grpc/keepalive#ServerParameters (default 0s) --collector.grpc-server.max-message-size int The maximum receivable message size for the collector's gRPC server (default 4194304) --collector.grpc.tls.cert string Path to a TLS Certificate file, used to identify this server to clients (default "") --collector.grpc.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --collector.grpc.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --collector.grpc.tls.enabled Enable TLS on the server (default false) --collector.grpc.tls.key string Path to a TLS Private Key file, used to identify this server to clients (default "") --collector.grpc.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.grpc.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.http-server.host-port string The host:port (e.g. 127.0.0.1:12345 or :12345) of the collector's HTTP server (default ":14268") --collector.http-server.idle-timeout duration See https://pkg.go.dev/net/http#Server (default 0s) --collector.http-server.read-header-timeout duration See https://pkg.go.dev/net/http#Server (default 2s) --collector.http-server.read-timeout duration See https://pkg.go.dev/net/http#Server (default 0s) --collector.http.tls.cert string Path to a TLS Certificate file, used to identify this server to clients --collector.http.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --collector.http.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --collector.http.tls.enabled Enable TLS on the server --collector.http.tls.key string Path to a TLS Private Key file, used to identify this server to clients --collector.http.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.http.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.num-workers int The number of workers pulling items from the queue (default 50) --collector.otlp.enabled Enables OpenTelemetry OTLP receiver on dedicated HTTP and gRPC ports (default true) --collector.otlp.grpc.host-port string The host:port (e.g. 127.0.0.1:12345 or :12345) of the collector's gRPC server (default ":4317") --collector.otlp.grpc.max-connection-age duration The maximum amount of time a connection may exist. Set this value to a few seconds or minutes on highly elastic environments, so that clients discover new collector nodes frequently. See https://pkg.go.dev/google.golang.org/grpc/keepalive#ServerParameters (default 0s) --collector.otlp.grpc.max-connection-age-grace duration The additive period after MaxConnectionAge after which the connection will be forcibly closed. See https://pkg.go.dev/google.golang.org/grpc/keepalive#ServerParameters (default 0s) --collector.otlp.grpc.max-message-size int The maximum receivable message size for the collector's gRPC server (default 4194304) --collector.otlp.grpc.tls.cert string Path to a TLS Certificate file, used to identify this server to clients --collector.otlp.grpc.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --collector.otlp.grpc.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --collector.otlp.grpc.tls.enabled Enable TLS on the server --collector.otlp.grpc.tls.key string Path to a TLS Private Key file, used to identify this server to clients --collector.otlp.grpc.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.otlp.grpc.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.otlp.grpc.tls.reload-interval duration The duration after which the certificate will be reloaded (0s means will not be reloaded) (default 0s) --collector.otlp.http.cors.allowed-headers string Comma-separated CORS allowed headers. See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers --collector.otlp.http.cors.allowed-origins string Comma-separated CORS allowed origins. See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin --collector.otlp.http.host-port string The host:port (e.g. 127.0.0.1:12345 or :12345) of the collector's HTTP server (default ":4318") --collector.otlp.http.idle-timeout duration See https://pkg.go.dev/net/http#Server (default 0s) --collector.otlp.http.read-header-timeout duration See https://pkg.go.dev/net/http#Server (default 2s) --collector.otlp.http.read-timeout duration See https://pkg.go.dev/net/http#Server (default 0s) --collector.otlp.http.tls.cert string Path to a TLS Certificate file, used to identify this server to clients --collector.otlp.http.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --collector.otlp.http.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --collector.otlp.http.tls.enabled Enable TLS on the server --collector.otlp.http.tls.key string Path to a TLS Private Key file, used to identify this server to clients --collector.otlp.http.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.otlp.http.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.otlp.http.tls.reload-interval duration The duration after which the certificate will be reloaded (0s means will not be reloaded) (default 0s) --collector.queue-size int The queue size of the collector (default 2000) --collector.queue-size-memory uint (experimental) The max memory size in MiB to use for the dynamic queue. --collector.tags string One or more tags to be added to the Process tags of all spans passing through this collector. Ex: key1=value1,key2=${envVar:defaultValue} --collector.zipkin.cors.allowed-headers string Comma-separated CORS allowed headers. See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers --collector.zipkin.cors.allowed-origins string Comma-separated CORS allowed origins. See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin --collector.zipkin.host-port string The host:port (e.g. 127.0.0.1:9411 or :9411) of the collector's Zipkin server (disabled by default) --collector.zipkin.keep-alive KeepAlive configures allow Keep-Alive for Zipkin HTTP server (enabled by default) (default true) --collector.zipkin.tls.cert string Path to a TLS Certificate file, used to identify this server to clients --collector.zipkin.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --collector.zipkin.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --collector.zipkin.tls.enabled Enable TLS on the server --collector.zipkin.tls.key string Path to a TLS Private Key file, used to identify this server to clients --collector.zipkin.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --collector.zipkin.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --config-file string Configuration file in JSON, TOML, YAML, HCL, or Java properties formats (default none). See spf13/viper for precedence. --downsampling.hashsalt string Salt used when hashing trace id for downsampling. --downsampling.ratio float Ratio of spans passed to storage after downsampling (between 0 and 1), e.g ratio = 0.3 means we are keeping 30% of spans and dropping 70% of spans; ratio = 1.0 disables downsampling. (default 1) -h, --help help for jaeger-all-in-one --log-encoding string Log encoding. Supported values are 'json' and 'console'. (default "json") --log-level string Minimal allowed log Level. For more levels see https://github.com/uber-go/zap (default "info") --memory.max-traces int The maximum amount of traces to store in memory. The default number of traces is unbounded. --metrics-backend string Defines which metrics backend to use for metrics reporting: prometheus or none (default "prometheus") --metrics-http-route string Defines the route of HTTP endpoint for metrics backends that support scraping (default "/metrics") --multi-tenancy.enabled Enable tenancy header when receiving or querying --multi-tenancy.header string HTTP header carrying tenant (default "x-tenant") --multi-tenancy.tenants string comma-separated list of allowed values for --multi-tenancy.header header. (If not supplied, tenants are not restricted) --query.additional-headers strings Additional HTTP response headers. Can be specified multiple times. Format: "Key: Value" (default []) --query.base-path string The base path for all HTTP routes, e.g. /jaeger; useful when running behind a reverse proxy. See https://github.com/jaegertracing/jaeger/blob/main/examples/reverse-proxy/README.md (default "/") --query.bearer-token-propagation Allow propagation of bearer token to be used by storage plugins --query.enable-tracing Enables emitting jaeger-query traces --query.grpc-server.host-port string The host:port (e.g. 127.0.0.1:14250 or :14250) of the query's gRPC server (default ":16685") --query.grpc.tls.cert string Path to a TLS Certificate file, used to identify this server to clients --query.grpc.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --query.grpc.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --query.grpc.tls.enabled Enable TLS on the server --query.grpc.tls.key string Path to a TLS Private Key file, used to identify this server to clients --query.grpc.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --query.grpc.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --query.http-server.host-port string The host:port (e.g. 127.0.0.1:14268 or :14268) of the query's HTTP server (default ":16686") --query.http.tls.cert string Path to a TLS Certificate file, used to identify this server to clients --query.http.tls.cipher-suites string Comma-separated list of cipher suites for the server, values are from tls package constants (https://golang.org/pkg/crypto/tls/#pkg-constants). --query.http.tls.client-ca string Path to a TLS CA (Certification Authority) file used to verify certificates presented by clients (if unset, all clients are permitted) --query.http.tls.enabled Enable TLS on the server --query.http.tls.key string Path to a TLS Private Key file, used to identify this server to clients --query.http.tls.max-version string Maximum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --query.http.tls.min-version string Minimum TLS version supported (Possible values: 1.0, 1.1, 1.2, 1.3) --query.log-static-assets-access Log when static assets are accessed (for debugging) --query.max-clock-skew-adjustment duration The maximum delta by which span timestamps may be adjusted in the UI due to clock skew; set to 0s to disable clock skew adjustments (default 0s) --query.static-files string The directory path override for the static assets for the UI --query.ui-config string The path to the UI configuration file in JSON format (default "") --sampling.strategies-file string The path for the sampling strategies file in JSON format. See sampling documentation to see format of the file --sampling.strategies-reload-interval duration Reload interval to check and reload sampling strategies file. Zero value means no reloading (default 0s) --sampling.strategies.bugfix-5270 Include default operation level strategies for Ratesampling type service level strategy. Cf. https://github.com/jaegertracing/jaeger/issues/5270 (default true) --span-storage.type string (deprecated) please use SPAN_STORAGE_TYPE environment variable. Run this binary with the 'env' command for help. Use "jaeger-all-in-one [command] --help" for more information about a command. 2025/02/17 09:09:37 unknown flag: --reporter.grpc.tls.ca
Steps to reproduce the issue:
*Install the Jaeger Operator bundle built off the latest upstream main branch.
*Create a Jaeger allinone instance.
apiVersion: jaegertracing.io/v1 kind: Jaeger metadata: name: jaeger-allinone spec: strategy: allinone
*Check that the Jaeger pod fails with unknown flag: --reporter.grpc.tls.ca error
Additional notes:
Image used for the Jaeger deployment.
Image: jaegertracing/all-in-one:1.65.0 Image ID: docker.io/jaegertracing/all-in-one@sha256:12fa17a231abded2c3b5b715bd252a043678495c588cbe772173991fbdcdf7c8
