Ingress-nginx: Too many nginx reloads

Created on 30 Jul 2018  路  3Comments  路  Source: kubernetes/ingress-nginx

NGINX Ingress controller version: 0.17.1

Kubernetes version (use kubectl version): 1.10.5

every time when an Ingress is changed, it will trigger two nginx reloads. According to my debug, it is caused by cert-related issue. when an ingress is updated, a new SSLcert is generated In store.SyncSecrets, but it doesn't assign a value to FullChainPemFileName, so syncIngress will trigger the first reload, when the checkSSLChainIssues generate the CA certification chain later, it will assign value to FullChainPemFileName , it will trigger second nginx reload. I'm not very familiar with this codebase, so I don't know the best way to fix this problem

picture yuyang0

Most helpful comment

Hey Yu Yang, I'm currently working on a feature that will fix this issue by serving certificates dynamically instead of reloading NGINX. I should have a PR for this up sometime this week.

picture hnrytrn on 30 Jul 2018
👍4

All 3 comments

Hey Yu Yang, I'm currently working on a feature that will fix this issue by serving certificates dynamically instead of reloading NGINX. I should have a PR for this up sometime this week.

hnrytrn picture hnrytrn on 30 Jul 2018
👍4

@hnrytrn I don't think #2889 has fixed this problem. this PR only adds a lua library,but it should also adjust the code in IsDynamicConfigurationEnough and configureDynamically.

yuyang0 picture yuyang0 on 6 Aug 2018

There are 2 other related PRs that I will be adding, and one of them will be adjusting code in IsDynamicConfigurationEnough and configureDynamically.

hnrytrn picture hnrytrn on 7 Aug 2018
👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

simo-eskalera picture simo-eskalera  路  3Comments
sophaskins picture sophaskins  路  3Comments
boazj picture boazj  路  3Comments
bashofmann picture bashofmann  路  3Comments
whereisaaron picture whereisaaron  路  3Comments