Skip to content

Commit 567d4d4

Browse files
committed
Start certificate watchers (#592)
We have to kick these off to pick up changes. (cherry picked from commit 2b88802)
1 parent 603006a commit 567d4d4

File tree

3 files changed

+11
-0
lines changed

3 files changed

+11
-0
lines changed
Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,4 @@
1+
project: operator
2+
kind: Fixed
3+
body: Certificate reloading for webhook and metrics endpoints should now behave correctly.
4+
time: 2025-03-28T11:22:31.608235Z

operator/CHANGELOG.md

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -45,6 +45,7 @@ For more details see: https://github.com/kubernetes-sigs/kubebuilder/discussions
4545
* Toggling `useFlux`, in either direction, no longer causes the bootstrap user's password to be regenerated.
4646

4747
Manual mitigation steps are available [here](https://github.com/redpanda-data/helm-charts/issues/1596#issuecomment-2628356953).
48+
* Certificate reloading for webhook and metrics endpoints should now behave correctly.
4849

4950

5051
## v2.3.6-24.3.3 - 2025-01-17

operator/cmd/run/run.go

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -350,6 +350,9 @@ func Run(
350350
setupLog.Error(err, "Failed to initialize webhook certificate watcher")
351351
os.Exit(1)
352352
}
353+
go func() {
354+
setupLog.Error(webhookCertWatcher.Start(ctx), "webhook cert watcher exits")
355+
}()
353356

354357
webhookTLSOpts = append(webhookTLSOpts, func(config *tls.Config) {
355358
config.GetCertificate = webhookCertWatcher.GetCertificate
@@ -400,6 +403,9 @@ func Run(
400403
setupLog.Error(err, "to initialize metrics certificate watcher", "error", err)
401404
os.Exit(1)
402405
}
406+
go func() {
407+
setupLog.Error(metricsCertWatcher.Start(ctx), "metrics cert watcher exits")
408+
}()
403409

404410
metricsServerOptions.TLSOpts = append(metricsServerOptions.TLSOpts, func(config *tls.Config) {
405411
config.GetCertificate = metricsCertWatcher.GetCertificate

0 commit comments

Comments
 (0)