[BUG] aks-node-ca-watcher cannot run

Azure / AKS

Azure Kubernetes Service

https://azure.github.io/AKS/

1.93k stars 293 forks source link

[BUG] aks-node-ca-watcher cannot run #4382

Open pawellrus opened 4 days ago

pawellrus commented 4 days ago

Describe the bug After k8s cluster reconfiguration one of nodes cannot run pod daemonset custom-ca-trust. Pod throws an error "Container image "mcr.microsoft.com/aks/aks-node-ca-watcher:static" is not present with pull policy of Never"

To Reproduce Steps to reproduce the behavior:

Custom Ca certificates should be enabled. And that is all that I can say. Seems that issue is not easy reproduceable.

Environment (please complete the following information):

AKS 1.27.7

UtheMan commented 4 days ago

@pawellrus - is this happening on a node that was created a while ago, but didn't have the feature enabled initially after creation? If yes, can you attempt to perform a node image upgrade on that node and see if this helps with the issue?

pawellrus commented 3 days ago

@pawellrus - is this happening on a node that was created a while ago, but didn't have the feature enabled initially after creation? If yes, can you attempt to perform a node image upgrade on that node and see if this helps with the issue?

thank you for advice. I will try to perform node image upgrade in maintenance window.