search

bitnami-labs / sealed-secrets

A Kubernetes controller and tool for one-way encrypted Secrets
Apache License 2.0
7.73k stars 685 forks source link

controller crashes after generating(?) key on arm #119

Closed MansM closed 6 years ago

MansM commented 6 years ago

HW: raspberry pi3/2 OS: Hypriot Sealed-secrets version: v0.7.0

build env:

FROM arm32v7/golang:1.10

RUN apt update && apt install -y \
     apt-transport-https \
     ca-certificates \
     curl \
     gnupg2 \
     software-properties-common

RUN  echo "deb [arch=armhf] https://download.docker.com/linux/debian \
     $(lsb_release -cs) stable" | \
     tee /etc/apt/sources.list.d/docker.list

RUN curl -fsSL https://download.docker.com/linux/debian/gpg | apt-key add -
RUN apt update && apt install -y  docker-ce

RUN mkdir -p /go/src/github.com/bitnami-labs/
WORKDIR /go/src/github.com/bitnami-labs/

CMD tail -f /var/log/alternatives.log

build script:

cd /go/src/github.com/bitnami-labs && \
git clone https://github.com/bitnami-labs/sealed-secrets.git && \
cd sealed-secrets && \
git checkout v0.7.0 && \
make controller.image

using the original v0.7.0 yamls (with the home build image) the controller starts and crashes:

 docker logs -f 6bce4fdf024b
2018/09/30 14:06:45 Key kube-system/sealed-secrets-key not found, generating new 4096 bit key
MansM commented 6 years ago

it the end it was not crashing, pi's are just too slow to generate key and cert within the timeframe kube allows it to start. setting initialDelaySeconds: 300 is enough to make it start