New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disabling config validation doesn't actually seem to disable it #27868
Comments
I can see that on a fresh install this setting suppresses the webhook
I did a fresh install and saw that the setting is respected. |
@esnible perhaps this is a 1.6 bug then?
As you can see; the And then like i mentioned in the OP, even if we remove it from our chart manually and fresh deploy 1.6 without it,
|
@esnible yeah; that's what we've done - as I said we removed it but then get log spam every 1 second as @howardjohn gave me a work around which was to also add:
The combination of these two actions seems to effectively have disabled config validation in 1.6. With regards to back porting, I think that's up to you... From a user perspective, I set I would suggest either:
To prevent user confusion |
🚧 This issue or pull request has been closed due to not having had activity from an Istio team member since 2020-11-02. If you feel this issue or pull request deserves attention, please reopen the issue. Please see this wiki page for more information. Thank you for your contributions. Created by the issue and PR lifecycle manager. |
Bug description
Hey,
We have
.Values.global.configValidation: false
in our installation options, however we still get aValidatingWebhookConfiguration
generated fromistioctl generate-manifests
.We explicitly ignore that file in our templating to work around this, but then
istiod
is full of spammy logs like this:Which looks like its continually running some sort of test?
We want to minimise the amount of change between 1.5 -> 1.6, so do not wish to run with a webhook validating resources for now.
[ ] Docs
[x] Installation
[ ] Networking
[ ] Performance and Scalability
[ ] Extensions and Telemetry
[ ] Security
[ ] Test and Release
[x] User Experience
[x] Developer Infrastructure
Expected behavior
The config option to disable the webhook and any logic in istiod around config validation.
Steps to reproduce the bug
Version (include the output of
istioctl version --remote
andkubectl version --short
andhelm version
if you used Helm)1.6.12
How was Istio installed?
Helm
Environment where bug was observed (cloud vendor, OS, etc)
The text was updated successfully, but these errors were encountered: