[RELEASE-v1.4] Support config to deploy internal certificates automatically (#13005) by nak3 · Pull Request #1183 · openshift/knative-serving

nak3 · 2022-07-25T08:27:14Z

This patch cherry-pics knative@58cce54.

skonto · 2022-07-25T09:28:12Z

@nak3 as a side note and independently of the failures above, I suspect for tests to run properly since we merged first #1173 we need to also merge openshift-knative/serverless-operator#1642. Ideally the latter needs to get in first.

skonto · 2022-07-26T11:18:16Z

/retest

nak3 · 2022-07-27T04:16:54Z

/retest

…#13005) * Add certificate reconciler for internal certs * Fix cert path * Temporary use local networking repo * Support internal-encryption configuration * Use const for cert name * Fix lint * rm blank line * Drop unused variable * Use one line style * Use one line code * Update net-kourier nightly bumping knative.dev/net-kourier d758682...b9b1e8b: > b9b1e8b Use `internal-encryption` to deploy internal certificates automatically (# 855) > 427434c bump kind and k8s versions in kind-e2e tests (# 859) Signed-off-by: Knative Automation <automation@knative.team> * Verify SecretPKKey as well * Do not drop activator always in the path * Comment about ctrl-ca suffix Co-authored-by: Knative Automation <automation@knative.team>

skonto · 2022-07-28T10:45:49Z

oc create configmap kourier-cm -n openshift-serverless --from-file=/tmp/kourier.yaml
error: failed to create configmap: namespaces "openshift-serverless" not found

/retest

nak3 · 2022-07-28T12:50:12Z

/test 49-e2e-aws-ocp-49

nak3 · 2022-07-28T12:51:48Z

@skonto This PR is ready to go now. Could you please take a look this and openshift-knative/net-kourier#23?

(#1188 also verified with enabling internal-encryption .)

skonto · 2022-07-28T13:11:28Z

Same error?

+ oc create namespace openshift-serverless
The connection to the server api.ci-ocp-4-9-amd64-aws-us-west-1-pv5gz.hive.aws.ci.openshift.org:6443 was refused - did you specify the right host or port?
....
++ oc get operatorgroups -oname -n openshift-serverless..
+ oc create configmap kourier-cm -n openshift-serverless --from-file=/tmp/kourier.yaml
error: failed to create configmap: namespaces "openshift-serverless" not found

nak3 · 2022-07-28T13:12:37Z

Yeah, I will look into it tomorrow.
Hmm.. why only 4.9...

skonto · 2022-07-28T13:13:14Z

Creation of the ns failed earlier seems infra.

nak3 · 2022-07-28T13:13:50Z

Ah, you are right.

+ oc create namespace openshift-serverless
The connection to the server api.ci-ocp-4-9-amd64-aws-us-west-1-pv5gz.hive.aws.ci.openshift.org:6443 was refused - did you specify the right host or port?

skonto · 2022-07-28T13:15:16Z

@nak3 there is a file added: cmd/activator/.main.go.swp. I guess we need to remove it.

nak3 · 2022-07-28T13:18:28Z

No, I removed it. It was added by mistake on upstream and removed knative@92b11a8 .
I think we should remove it here too.

skonto · 2022-07-28T13:33:48Z

Yes we should remove it its garbage.

skonto · 2022-07-28T13:34:19Z

/test 49-e2e-aws-ocp-49

openshift-ci · 2022-07-28T14:38:54Z

@nak3: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

skonto · 2022-07-29T08:56:01Z

@nak3 this seems ready. LGTM but can we remove the swp file?

nak3 · 2022-07-29T10:01:16Z

Nah, this PR is removing the swap file. It will be removed when you merged this PR.

skonto · 2022-07-29T10:35:35Z

Ok my bad misread the github sign. What about the order of merging should we do the S-O one first?

nak3 · 2022-07-29T11:20:32Z

Either is fine. So. I updated S-O for ready.

skonto · 2022-07-29T11:38:31Z

/lgtm

openshift-ci · 2022-07-29T11:39:03Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: nak3, skonto

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

~~OWNERS~~ [nak3,skonto]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

openshift-ci Bot requested review from alanfx and mgencur July 25, 2022 08:27

openshift-ci Bot added area/test-and-release Issues or PRs related to test and release approved Indicates a PR has been approved by an approver from all required OWNERS files. labels Jul 25, 2022

nak3 force-pushed the backport-e2e-encryption branch from ea6abd6 to 45b71b9 Compare July 27, 2022 03:02

nak3 mentioned this pull request Jul 27, 2022

[TEST_ONLY][RELEASE-v1.4] Backport e2e encryption enable encryption #1188

Closed

nak3 force-pushed the backport-e2e-encryption branch from bc6e49f to b644881 Compare July 27, 2022 07:35

nak3 force-pushed the backport-e2e-encryption branch from 6eadb1a to 9b93484 Compare July 28, 2022 03:16

openshift-ci Bot assigned skonto Jul 29, 2022

openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Jul 29, 2022

openshift-merge-robot merged commit f32363b into openshift:release-v1.4 Jul 29, 2022

Conversation

nak3 commented Jul 25, 2022

Uh oh!

skonto commented Jul 25, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

skonto commented Jul 26, 2022

Uh oh!

nak3 commented Jul 27, 2022

Uh oh!

skonto commented Jul 28, 2022

Uh oh!

nak3 commented Jul 28, 2022

Uh oh!

nak3 commented Jul 28, 2022

Uh oh!

skonto commented Jul 28, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

nak3 commented Jul 28, 2022

Uh oh!

skonto commented Jul 28, 2022

Uh oh!

nak3 commented Jul 28, 2022

Uh oh!

skonto commented Jul 28, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

nak3 commented Jul 28, 2022

Uh oh!

skonto commented Jul 28, 2022

Uh oh!

skonto commented Jul 28, 2022

Uh oh!

openshift-ci Bot commented Jul 28, 2022

Uh oh!

skonto commented Jul 29, 2022

Uh oh!

nak3 commented Jul 29, 2022

Uh oh!

skonto commented Jul 29, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

nak3 commented Jul 29, 2022

Uh oh!

skonto commented Jul 29, 2022

Uh oh!

openshift-ci Bot commented Jul 29, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

skonto commented Jul 25, 2022 •

edited

Loading

skonto commented Jul 28, 2022 •

edited

Loading

skonto commented Jul 28, 2022 •

edited

Loading

skonto commented Jul 29, 2022 •

edited

Loading