CM-553: Rebase for operator v1.16.0 release with upstream cert-manager v1.16.4

[siddhibhor-56]

Rebases downstream operator with upstream cert-manager v1.16.4 for next release [v1.16.4] :

• go dependencies
• update bundle description to include upstream version of cert-manager
• skipRange: ">=1.15.1 <1.16.0", replaces: "v1.15.1"
• downstream fork updates
  -https://github.com/openshift/jetstack-cert-manager/releases/tag/v1.16.4

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: siddhibhor-56
Once this PR has been reviewed and has the lgtm label, please assign swghosh for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[swghosh]

Suggested change

	ARG RELEASE_BRANCH=release-1.15
	ARG RELEASE_BRANCH=release-1.16

[siddhibhor-56]

Done

[swghosh]

/test e2e-operator

[swghosh]

/retest

[swghosh]

Due to openshift/release#64190, we would need :latest appended to these. That should help the fix ImagePullBackOff on the e2e.

[siddhibhor-56]

/retest

[siddhibhor-56]

/retest

[swghosh]

Since we're adding custom (non-auto generated) code for this ApplyOperatorStatus which is required required in the deployment_controller (and possibly other controllers) vendored from library-go (eg. traces in https://github.com/search?q=repo%3Aopenshift%2Flibrary-go%20ApplyOperatorStatus&type=code), we need to add unit tests here to ensure this is never broken.

For reference, I added a few unit test cases: f1863ac that would test such scenarios. Today, the operator only adds/updates into status.OperatorStatus.Conditions and status.OperatorStatus.Generations.

[swghosh]

The fake client unfortunately does not support client.Apply funcs yet (ref: kubernetes-sigs/controller-runtime#2341) which is why the results of testing the implementation against it are not accurate. We can follow-up with Envtest based integration test instead of unit tests based on fake client, but that'll require some work to add a new CI job where integration tests are run separately.

[openshift-ci]

@siddhibhor-56: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-operator-tech-preview	24c1bc7	link	false	/test e2e-operator-tech-preview

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[swghosh]

/cc @Senthamilarasu-STA
for px-approved label
This bump is required for the next 1.16.0 operator release.

[swghosh]

/label docs-approved
Added docs-needed label to parent epic: CM-526, @subhtk is aware of the 1.16 docs.

[swghosh]

Please tidy up the commits to include meaningful chunks of changes in each that doesn't repeat/revert the same changes, update the ApplyOperatorStatus code so it doesn't panic and this should be good to go after.

[swghosh]

Please remove this entire .idea directory, also you can add .idea/ to the top-level .gitignore so it's automatically ignored from future git tracking.

[swghosh]

Notes to my self,
Future TODO: test cainjector metrics, update our ServiceMonitor docs with these metric paths.

[swghosh]

Notes to my self,
Future TODO: test webhook metrics, update our ServiceMonitor docs with these metric paths.

[swghosh]

If we make this link generic and update it to https://github.com/cert-manager/cert-manager/releases so we don't need to update this link during every rebase manually.

[swghosh]

Let's update the CI base image bumps in a different commit.

[swghosh]

You have to additionally update starter.go to with

       operatorClient := &operatorclient.OperatorClient{
		Informers: certManagerInformers,
		Client:    certManagerOperatorClient.OperatorV1alpha1(),
+ 		Clock:     cc.Clock,
	}

otherwise the OperatorClient's clock stays nil which'll cause panics.

[swghosh]

/retitle CM-553: Rebase for operator v1.16.0 release with upstream cert-manager v1.16.4

[openshift-ci-robot]

@siddhibhor-56: This pull request references CM-553 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.19.0" version, but no target version was set.

In response to this:

Rebases downstream operator with upstream cert-manager v1.16.4 for next release [v1.16.4] :

• go dependencies
• update bundle description to include upstream version of cert-manager
• skipRange: ">=1.15.1 <1.16.0", replaces: "v1.15.1"
• downstream fork updates
  -https://github.com/openshift/jetstack-cert-manager/releases/tag/v1.16.4

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[swghosh]

/reopen

[openshift-ci]

@swghosh: Failed to re-open PR: state cannot be changed. The repository that submitted this pull request has been deleted.

In response to this:

/reopen

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[swghosh]

/reopen

[openshift-ci]

@swghosh: Failed to re-open PR: state cannot be changed. The repository that submitted this pull request has been deleted.

In response to this:

/reopen

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.