unable to use operator in-cluster (x509: certificate signed by unknown authority) #30

kadel · 2023-10-13T13:46:46Z

Describe the bug

When running operator in cluster I get the following errors

 status:
    conditions:
    - lastTransitionTime: "2023-10-13T13:38:01Z"
      status: "False"
      type: Deployed
    - lastTransitionTime: "2023-10-13T13:38:01Z"
      status: "True"
      type: Initialized
    - lastTransitionTime: "2023-10-13T13:38:26Z"
      message: |-
        values don't meet the specifications of the schema(s) in the following chart(s):
        upstream:
        Get "https://raw.githubusercontent.com/bitnami/charts/main/bitnami/postgresql/values.schema.json": x509: certificate signed by unknown authority
      reason: ReconcileError
      status: "True"
      type: Irreconcilable
    - lastTransitionTime: "2023-10-13T13:38:01Z"
      message: |-
        values don't meet the specifications of the schema(s) in the following chart(s):
        upstream:
        Get "https://raw.githubusercontent.com/bitnami/charts/main/bitnami/postgresql/values.schema.json": x509: certificate signed by unknown authority
      reason: InstallError
      status: "True"
      type: ReleaseFailed

What are the steps to reproduce this bug?

build and push operator, bundle and catalog images
add CatalogSource
create a backstage instance using sample

Versions of software used and environment

tested on crc and 4.13 cluster on GCP both with the same problem

The text was updated successfully, but these errors were encountered:

kadel · 2023-10-13T13:55:49Z

backstage/charts#141 is probably going to "fix" this.
It is not going to fix the root cause of why this is getting certificate errors, but after it is merged, the helm chart won't try fetching remote schemas anymore.

But the root cause of this is still going to be present, and it could cause problems somewhere else.

tumido · 2023-10-17T12:23:33Z

Is this duplicate of #29 ?

kadel · 2023-10-18T09:07:44Z

Is this duplicate of #29 ?

no. Fixing #29 will only resolve one of the symptoms of this problem

tumido · 2023-10-18T14:43:26Z

FTR: Operator should consume CAs from the cluster it's running in. I suspect this issue comes from the CSV we have defined for the operator.

kadel added kind/bug Something isn't working status/triage priority/high labels Oct 13, 2023

kadel assigned jesuino Oct 18, 2023

kadel added status/ready and removed status/triage labels Nov 1, 2023

kadel unassigned jesuino Nov 1, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

unable to use operator in-cluster (x509: certificate signed by unknown authority) #30

unable to use operator in-cluster (x509: certificate signed by unknown authority) #30

kadel commented Oct 13, 2023

kadel commented Oct 13, 2023

tumido commented Oct 17, 2023

kadel commented Oct 18, 2023

tumido commented Oct 18, 2023

unable to use operator in-cluster (x509: certificate signed by unknown authority) #30

unable to use operator in-cluster (x509: certificate signed by unknown authority) #30

Comments

kadel commented Oct 13, 2023

Describe the bug

What are the steps to reproduce this bug?

Versions of software used and environment

kadel commented Oct 13, 2023

tumido commented Oct 17, 2023

kadel commented Oct 18, 2023

tumido commented Oct 18, 2023