Skip to content

Verification on 1.7.2 fails (Kubectl apply) #4999

New issue
New issue
Closed
Closed
Verification on 1.7.2 fails (Kubectl apply)#4999
Labels
kind/bugCategorizes issue or PR as related to a bug.lifecycle/rottenDenotes an issue or PR that has aged beyond stale and will be auto-closed.
@mamercad

Description

@mamercad
mamercad
opened on Mar 29, 2022

When following the instructions for the "Kubectl apply", installation fails verification with the following error:

❯ bash -x ./validate.sh 
+ kubectl apply -f test-resources.yaml
namespace/cert-manager-test unchanged
Error from server (InternalError): error when creating "test-resources.yaml": Internal error occurred: failed calling webhook "webhook.cert-manager.io": failed to call webhook: Post "https://cert-managercert-manager-webhook.cert-manager.svc:443/mutate?timeout=10s": service "cert-managercert-manager-webhook" not found
Error from server (InternalError): error when creating "test-resources.yaml": Internal error occurred: failed calling webhook "webhook.cert-manager.io": failed to call webhook: Post "https://cert-managercert-manager-webhook.cert-manager.svc:443/mutate?timeout=10s": service "cert-managercert-manager-webhook" not found

Deployed with kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.7.2/cert-manager.yaml as outlined in the documentation.

Here are the manifests for good measure:

❯ cat test-resources.yaml 
apiVersion: v1
kind: Namespace
metadata:
  name: cert-manager-test
---
apiVersion: cert-manager.io/v1
kind: Issuer
metadata:
  name: test-selfsigned
  namespace: cert-manager-test
spec:
  selfSigned: {}
---
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
  name: selfsigned-cert
  namespace: cert-manager-test
spec:
  dnsNames:
    - example.com
  secretName: selfsigned-cert-tls
  issuerRef:
    name: test-selfsigned

Describe the bug:

Expected behaviour:

The expected behavior is that verification passes.

Steps to reproduce the bug:

Just follow the steps outlined here.

Anything else we need to know?:

Environment details::

  • Kubernetes version: v1.23.3+k3s1
  • Cloud-provider/provisioner: Rancher K3s
  • cert-manager version: 1.7.2
  • Install method: static manifests

/kind bug

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/bugCategorizes issue or PR as related to a bug.lifecycle/rottenDenotes an issue or PR that has aged beyond stale and will be auto-closed.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions