Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug] Unable to reconcile Grafana(Dashboard|Datasource) resources - tls: failed to verify certificate: x509: certificate signed by unknown authority #1747

Closed
sarahbx opened this issue Nov 4, 2024 · 1 comment
Closed

[Bug] Unable to reconcile Grafana(Dashboard|Datasource) resources - tls: failed to verify certificate: x509: certificate signed by unknown authority #1747

sarahbx opened this issue Nov 4, 2024 · 1 comment
Labels
bug Something isn't working needs triage Indicates an issue or PR lacks a `triage/foo` label and requires one.

Comments

@sarahbx
Copy link

sarahbx commented Nov 4, 2024
edited
Loading

Describe the bug
Unable to import Grafana(Dashboard|Datasource) resources

As reported by the ODF QE team, dashboard import is failing for a recent OCP nightly version.
redhat-performance/odf-grafana#28

Also seen on OCP v4.17.2:
from grafana controller v5: (grafana v5.14.0)

ERROR GrafanaDashboardReconciler error reconciling dashboard {"controller": "grafanadashboard", "controllerGroup": "grafana.integreatly.org", "controllerKind": "GrafanaDashboard", "GrafanaDashboard": {"name":"odf-performance-analysis","namespace":"perfscale"}, "namespace": "perfscale", "name": "odf-performance-analysis", "reconcileID": "{uuid}", "dashboard": "odf-performance-analysis", "grafana": "grafana", "error": "Get \"https://grafana-route-perfscale.apps.{CLUSTER}/api/folders?limit=1000&page=1\": tls: failed to verify certificate: x509: certificate signed by unknown authority"}

Version
Full semver version of the operator being used e.g. v4.10.0, v5.0.0-rc0
v5.14.0

To Reproduce
Steps to reproduce the behavior:

  1. Install grafana-operator v5.14.0
  2. Create GrafanaDashboard or datasource to be discovered by grafana
  3. Check grafana controller logs for error

Expected behavior
Dashboards and datasources imported to grafana

Suspect component/Location where the bug might be occurring
Controller-v5

Screenshots
n/a

Runtime (please complete the following information):

  • OS: [e.g. Linux,Fedora,Mac] RHEL9
  • Grafana Operator Version [e.g. v5.0.0] v5.14.0
  • Environment: [e.g Openshift,Kubernetes,minikube etc. please specify versions] OpenShift v4.16.14 & v4.17.2
  • Deployment type: [e.g Openshift OLM/Helm/kustomize] OLM
  • Other: [Other variables/things that might be relevant to this bug, versions of other services e.g. operator-sdk]

Additional context
redhat-performance/odf-grafana#28
@sarahbx sarahbx added bug Something isn't working needs triage Indicates an issue or PR lacks a `triage/foo` label and requires one. labels Nov 4, 2024
@theSuess
Copy link
Member

theSuess commented Nov 5, 2024

Thanks for the report. This is due to us fixing a longstanding security issue in which we did not verify TLS certificates. With the newest version we just released, you can configure TLS settings in .spec.client.tls. To solve for this specific use case, either add a matching CA bundle or disable TLS verification to return to the old behavior.

See these issues for more details:
#1683
#1675

@theSuess theSuess closed this as not planned Won't fix, can't repro, duplicate, stale Nov 5, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working needs triage Indicates an issue or PR lacks a `triage/foo` label and requires one.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sarahbx @theSuess