You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
pkg/mod/k8s.io/client-go@v0.20.2/tools/cache/reflector.go:167: Failed to watch *v1beta1.EndpointSlice: failed to list *v1beta1.EndpointSlice: endpointslices.discovery.k8s.io is forbidden: User "system:serviceaccount:kube-system:coredns" cannot list resource "endpointslices" in API group "discovery.k8s.io" at the cluster scope
What you expected to happen:
CoreDNS should be Running and Ready
Good callout! We stay in sync with the versions that EKS uses in the cloud this is why we bumped to CoreDNS 1.8.3 with 1.20 and then 1.21. Bumping ahead of upstream like this can/will create issues like this which are not ideal. On the EKS side and during our e2e tests using kops, we apply the necessary changes to the role. We can add this to add our docs to make that more clear.
Since there is a fix in the 1.22 branch upstream now, we probably would accept a backport patch for 1.20 and 1.21 if you are interested in contributing.
What happened:
I was more or less following these instructions for EKS-D 1-21-4: https://distro.eks.amazonaws.com/users/install/kubeadm-onsite/
But CoreDNS fails to start with these errors in the logs:
What you expected to happen:
CoreDNS should be Running and Ready
How to reproduce it (as minimally and precisely as possible):
Host system is ubuntu 20.04.
Install
kubeadm=1.21.2-00
,kubectl=1.21.2-00
andkubelet=1.21.2-00
following https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/Then do this:
Create
kubeadm-config.yaml
with the following contents (replacepodSubnet
with something available on your network):Finally run:
and check the logs of one of the
coredns
pods.Anything else we need to know?:
The error is due to a change in CoreDNS 1.8.1: https://coredns.io/2021/01/20/coredns-1.8.1-release/ and has been fixed in upstream
kubeadm
but not backported to 1.21 (which uses 1.8.0 by default): kubernetes/kubernetes@74feb07#diff-80bea83c0faf0435d38773c725ba352bfd0e7e0aee6d0cdaa1d223ec5a4189b4I suggest you cherry-pick that commit or downgrade your CoreDNS version accordingly.
Environment:
I used versions from here: https://github.com/aws/eks-distro/blob/v1-21-eks-4/development/pull-all.sh
The text was updated successfully, but these errors were encountered: