-
Notifications
You must be signed in to change notification settings - Fork 2.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[BUG][CAPR] rancher-provisioning-capi-patch-sa job failing due to lack of exclusion from PSA enforcement #42719
Comments
This is not resolved for us.
|
tested versions: (all using rke v1.4.8) |
I would suspect that the issue here is that changes that were made to introduce the new CAPI chart may not have been coordinated with changes to FeatureAppNS list, which should track all feature chart / system namespaces to exclude PSA enforcements from them.
|
waiting for viable init node
using these namspaces in the pod security configuration, I was able to resolve the issue for fleet. It appears that |
/forwardport v2.8.0 |
Test Environment:Rancher version: v2.7-head 1d25044 Downstream cluster type: RKE2 node driver cluster Testing:Tested this issue with the following steps:
Result @Oats87 Should I close this ticket now that the job isn't faililng and open a different issue? The cluster went to delete after about 5 minutes and is now just stuck in deleting |
Rancher Server Setup
Information about the Cluster
AWS node driver
User Information
Describe the bug
Downstream cluster is unable to provision and cluster is stuck at
waiting for viable init node
. I don't see the machines getting created on the AWS portal and the latest log message isCreating server [fleet-default/auto-aws-kkswl-pool0-01d54a4c-4kr6x] of kind (Amazonec2Machine) for machine auto-aws-kkswl-pool0-74f9b78f74xcl6q9-fjnch in infrastructure provider
To Reproduce
Result
Cluster gets stuck while provisioning with the status
waiting for viable init node
Expected Result
Cluster is able to provision successfully
Screenshots
The text was updated successfully, but these errors were encountered: