Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

new internal-tls not being loaded by running pods #1232

Open
MinerYang opened this issue Jul 14, 2022 · 2 comments
Open

new internal-tls not being loaded by running pods #1232

MinerYang opened this issue Jul 14, 2022 · 2 comments
Assignees
@MinerYang
Labels
never-stale

Comments

@MinerYang
Copy link
Collaborator

MinerYang commented Jul 14, 2022
edited

When the cert-manager automatically renew the internal tls certificate , the internal tls not being reloaded into the pods and it would affect the communication among the Harbor components.
We need to delete the pod manually to let it reloaded.
if we curl the registry url in the core pod, we can see info below

SSL certificate verify result: unable to get local issuer certificate(20)

and in the harbor-core log , there's a error message

x509 Certificate Signed by Unknown Authority
@MinerYang MinerYang self-assigned this Jul 14, 2022
@chess-knight chess-knight mentioned this issue Apr 13, 2023
Merged
@MinerYang
Copy link
Collaborator Author

goharbor/harbor-operator#712

@MinerYang
Copy link
Collaborator Author

kubernetes/kubernetes#50345

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MinerYang MinerYang

Labels
never-stale
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@MinerYang