Skip to content

Hotfix: Kubernetes upgrade with signing requests enabled

Steve Starke requested to merge hotfix/v6.0/signing-upgrade into release/v6.0

Version Control Information

Source branch: hotfix/v6.0/signing-upgrade Target branch: release/v6.0

Commits:

* Fix fetching root CA key if signing requests are enabled

The helpers/vault-approle is executed in advance for renewal of the
Kubernetes PKI, but there was a mismatch in the variable names. As
everywhere else we set "vault_role_id" to "vault_node_role_id" (which is
set by the helper role), we do the same here as well.
This did not affect an rollout of k8s-core, but only Kubernetes
upgrades.

Description

Feel free to add further information about your MR in this section

Closes: #

Merge Prerequisites

  • MR title (and description) are descriptive
  • Code is readable and syntactically correct
  • Code is understandable
  • Documentation has been updated, if necessary
  • Commit messages look good
  • Release note file in RST format added in latest commit

As a developer: please do not tick these boxes yourself. As a reviewer: please get yourself a hot cold beverage.

Merge request reports