search

GoogleCloudPlatform / k8s-config-connector

GCP Config Connector, a Kubernetes add-on for managing GCP resources
https://cloud.google.com/config-connector/docs/overview
Apache License 2.0
883 stars 216 forks source link

ContainerNodePool no status update, no logs #2562

Closed sthomson-wyn closed 3 weeks ago

sthomson-wyn commented 3 weeks ago

Checklist

Bug Description

When creating a ContainerNodePool, the status never updates, no logs are emmitted suggesting what is wrong

Additional Diagnostic Information

image image

Kubernetes Cluster Version

v1.27.11-gke.1062004

Config Connector Version

1.115.0

Config Connector Mode

namespaced mode (default)

Log Output

No response

Steps to reproduce the issue

Create containernodepool per yaml snippet, wait. Nothing happens

YAML snippets

apiVersion: container.cnrm.cloud.google.com/v1beta1
kind: ContainerNodePool
metadata:
  annotations:
    cnrm.cloud.google.com/management-conflict-prevention-policy: none
    cnrm.cloud.google.com/project-id: {project}
    cnrm.cloud.google.com/state-into-spec: Absent
  name: stateless-c
  namespace: {project}
spec:
  clusterRef:
    external: {clusterName}
  initialNodeCount: 0
  location: us-central1
  management:
    autoRepair: true
    autoUpgrade: true
  maxPodsPerNode: 64
  networkConfig:
    podRange: k8s-pods
  nodeConfig:
    diskSizeGb: 32
    diskType: pd-balanced
    gvnic:
      enabled: true
    imageType: COS_CONTAINERD
    labels:
      node-type: stateless
    loggingVariant: DEFAULT
    machineType: e2-custom-8-12288
    metadata:
      cluster-type: regional
      disable-legacy-endpoints: "true"
      node-type: stateless
    oauthScopes:
    - https://www.googleapis.com/auth/logging.write
    - https://www.googleapis.com/auth/monitoring
    - https://www.googleapis.com/auth/ndev.clouddns.readwrite
    - https://www.googleapis.com/auth/servicecontrol
    - https://www.googleapis.com/auth/trace.append
    - https://www.googleapis.com/auth/compute
    - https://www.googleapis.com/auth/devstorage.read_only
    - https://www.googleapis.com/auth/service.management.readonly
    preemptible: true
    serviceAccountRef:
      external: default
    shieldedInstanceConfig:
      enableIntegrityMonitoring: true
      enableSecureBoot: true
    spot: false
    tags:
    - subnet-{subnet}
    taint:
    - effect: NO_SCHEDULE
      key: cloud.google.com/gke-preemptible
      value: "true"
    workloadMetadataConfig:
      mode: GKE_METADATA
  nodeCount: 0
  nodeLocations:
  - us-central1-a
  - us-central1-b
  - us-central1-c
  upgradeSettings:
    maxSurge: 1
    maxUnavailable: 0
    strategy: SURGE
sthomson-wyn commented 3 weeks ago

This was my bad, filtering logs incorrectly