Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG] Yurt-controller-manager scheduled to edge node leads to yurthub csr approval failed #502

Closed
adamzhoul opened this issue Sep 26, 2021 · 0 comments
Closed

[BUG] Yurt-controller-manager scheduled to edge node leads to yurthub csr approval failed #502

adamzhoul opened this issue Sep 26, 2021 · 0 comments
Labels
kind/bug kind/bug

Comments

@adamzhoul
Copy link
Member

adamzhoul commented Sep 26, 2021
edited
Loading

What happened:

yurtctl convert failed.
yurthub pod wait forever.

I0926 08:06:13.213334       1 server.go:203] waiting for the master to sign the yurthub certificate

the process:

  1. run yurtctl convert
  2. label "openyurt.io/is-dege-worker=true" to all cloud-node. do nothing to edge-node
  3. deploy yurt-controller-manager deployment. with nodeAffinity "openyurt.io/is-edge-worker" in "false"
  4. pod scheduled to edge-node ------------------------> attention here
  5. yurthub.yaml was created by k8s job
  6. yurthub pod run, wait for CSR approval

However:

  1. yurt-controller-manager visit APIserver by svc IP.
  2. yurt-controller-manager is in edge-node
  3. edge-node network is isolated with cloud
  4. yurt-controller-manager can never approval the CSR

Result:

  1. yurthub waiting forever
  2. convert job failed
  3. yurtctl convert failed with timeout

/kind bug
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/bug kind/bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@adamzhoul