E2E wait for webhook ca injection#6144
Conversation
k8s-ci-robot
added
kind/failing-test
k8s-ci-robot
added
the
cncf-cla: yes
k8s-ci-robot
added
the
size/M
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #6144 +/- ##
=======================================
Coverage 44.43% 44.43%
=======================================
Files 280 280
Lines 25367 25367
=======================================
Hits 11272 11272
Misses 13283 13283
Partials 812 812 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
willie-yao
force-pushed
the
fix-webhook-cert
branch
from
38211e0 to
69fa66f
Compare
|
/test pull-cluster-api-provider-azure-apiversion-upgrade |
willie-yao
force-pushed
the
fix-webhook-cert
branch
from
69fa66f to
bb3c2ec
Compare
|
/test pull-cluster-api-provider-azure-apiversion-upgrade |
2 similar comments
|
/test pull-cluster-api-provider-azure-apiversion-upgrade |
|
/test pull-cluster-api-provider-azure-apiversion-upgrade |
|
/test pull-cluster-api-provider-azure-apiversion-upgrade |
1 similar comment
|
/test pull-cluster-api-provider-azure-apiversion-upgrade |
Signed-off-by: William Yao <william2000yao@gmail.com>
Signed-off-by: William Yao <william2000yao@gmail.com>
willie-yao
force-pushed
the
fix-webhook-cert
branch
from
bb3c2ec to
fc3331c
Compare
willie-yao
changed the title
k8s-ci-robot
removed
the
do-not-merge/work-in-progress
|
/label tide/merge-method-squash |
k8s-ci-robot
added
the
tide/merge-method-squash
| kind: Issuer | ||
| name: selfsigned-issuer | ||
| privateKey: | ||
| rotationPolicy: Never |
There was a problem hiding this comment.
is this configuration change isolated to our E2E test environment? we wouldn't want to broadcast this change to release artifacts
cc @mboersma
There was a problem hiding this comment.
Oh you're right, good catch! I think this does affect release artifacts. Let me see if there's another way to do this
|
/hold |
k8s-ci-robot
added
the
do-not-merge/hold
Signed-off-by: William Yao <william2000yao@gmail.com>
|
/test pull-cluster-api-provider-azure-apiserver-ilb |
| apiVersion: kustomize.config.k8s.io/v1beta1 | ||
| kind: Kustomization | ||
| resources: | ||
| - ../../../../../../config/default |
k8s-ci-robot
added
the
lgtm
|
LGTM label has been added. DetailsGit tree hash: 3a8dc2f96d21040bc0809e7468940c91217bc766 |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: jackfrancis The full list of commands accepted by this bot can be found here. The pull request process is described here DetailsNeeds approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
|
/retest |
|
/hold cancel |
k8s-ci-robot
removed
the
do-not-merge/hold
|
/retest |
|
Tests are being really flaky. I'll investigate on main and see if it's a problem with this PR or something else going on |
|
/retest |
|
/cherry-pick release-1.22 |
|
@mboersma: #6144 failed to apply on top of branch "release-1.22": DetailsIn response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
* Wait for webhook ca injection Signed-off-by: William Yao <william2000yao@gmail.com> * refactor Signed-off-by: William Yao <william2000yao@gmail.com> * rotation policy never Signed-off-by: William Yao <william2000yao@gmail.com> * Dont affect E2E test environment Signed-off-by: William Yao <william2000yao@gmail.com> --------- Signed-off-by: William Yao <william2000yao@gmail.com>
* Pin RKE2 provider to v0.21.1 * Bump Go toolchain to v1.24.13 * Remove Windows VMSS test Signed-off-by: William Yao <william2000yao@gmail.com> * Bump CAPI to v1.11.6 * increase CAPI remote connection grace period to fix HA upgrade flake Signed-off-by: William Yao <william2000yao@gmail.com> * E2E wait for webhook ca injection (kubernetes-sigs#6144) * Wait for webhook ca injection Signed-off-by: William Yao <william2000yao@gmail.com> * refactor Signed-off-by: William Yao <william2000yao@gmail.com> * rotation policy never Signed-off-by: William Yao <william2000yao@gmail.com> * Dont affect E2E test environment Signed-off-by: William Yao <william2000yao@gmail.com> --------- Signed-off-by: William Yao <william2000yao@gmail.com> * Add resource-version stability wait intervals for API upgrade tests * [release-1.22] Bump CAPI to v1.11.7 (kubernetes-sigs#6174) * Bump CAPI to v1.11.7 * Clean up AzureClusterID in aks_adopt spec * Bump google.golang.org/grpc to v1.79.3 Fixes CVE-2026-33186 (GHSA-p77j-4mvh-x3m3): gRPC-Go authorization bypass via missing leading slash in :path header. All grpc versions < 1.79.3 are affected. This resolves the dependency-review CI failure. * Fix MachinePoolScope.Close() recreating machines during deletion * Fix lint: remove unused getVirtualMachineScaleSet, fix gci formatting * Improve code comment about MachinePool sync guard * [release-1.22] Bump CAPI to v1.11.8 (kubernetes-sigs#6218) * Bump Go toolchain to v1.25.9 * Bump CAPI to v1.11.8 * Bump cert-manager to v1.20.1 * [release-1.22] Update trivy and bump opentelemetry to v1.43.0 (kubernetes-sigs#6223) * Update trivy version to v0.69.3 * (deps): bump go.opentelemetry.io/otel from 1.40.0 to 1.43.0 * Implement smarter retry for az commands in peer-vnets flow Signed-off-by: William Yao <william2000yao@gmail.com> * Merge pull request kubernetes-sigs#6246 from mboersma/bump-cert-manager-v1.20.2 Bump cert-manager to v1.20.2 * Bump CAPI to v1.11.10 * Bump cloudbuild to use gcb-docker-gcloud image with Go v1.25 * Use upstream k8s images if no artifacts are built Signed-off-by: William Yao <william2000yao@gmail.com> * post sync upstream/release-1.22 -> stolostron/backplane-2.17 * add tags for Konflux imagex and update stolostron/Dockerfile --------- Signed-off-by: William Yao <william2000yao@gmail.com> Co-authored-by: Jon Huhn <nojnhuh@users.noreply.github.com> Co-authored-by: Matt Boersma <Matt.Boersma@microsoft.com> Co-authored-by: William Yao <william2000yao@gmail.com> Co-authored-by: Willie Yao <47200969+willie-yao@users.noreply.github.com> Co-authored-by: Kubernetes Prow Robot <20407524+k8s-ci-robot@users.noreply.github.com>
* Wait for webhook ca injection Signed-off-by: William Yao <william2000yao@gmail.com> * refactor Signed-off-by: William Yao <william2000yao@gmail.com> * rotation policy never Signed-off-by: William Yao <william2000yao@gmail.com> * Dont affect E2E test environment Signed-off-by: William Yao <william2000yao@gmail.com> --------- Signed-off-by: William Yao <william2000yao@gmail.com>
|
Can we close #5690 ? |
|
@jackfrancis this didn't actually fix #5690 and Matt is working on a different approach in #6221 |
5 participants
What type of PR is this?
/kind failing-test
What this PR does / why we need it:
This is a PR attempting to fix webhook certificate errors
Which issue(s) this PR fixes (optional, in
fixes #<issue number>(, fixes #<issue_number>, ...)format, will close the issue(s) when PR gets merged):Could affect #5690
Special notes for your reviewer:
TODOs:
Release note: