Closed DnPlas closed 3 months ago
Thank you for reporting us your feedback!
The internal ticket has been created: https://warthogs.atlassian.net/browse/KF-5760.
This message was autogenerated
Since this is not an issue in istio-operators 1.17/stable, I was able to deploy the istio-ingressgateway workload Pod
in a labeled Node
after customizing the nodeTermSelector
. This is my environment:
Model Controller Cloud/Region Version SLA Timestamp
istio-test uk8s-31 microk8s/localhost 3.1.8 unsupported 16:24:00Z
App Version Status Scale Charm Channel Rev Address Exposed Message
istio-ingressgateway active 1 istio-gateway 1.17/stable 723 10.152.183.168 no
istio-pilot active 1 istio-pilot 1.17/stable 827 10.152.183.249 no
namespace-node-affinity active 1 namespace-node-affinity 2.2/stable 22 10.152.183.147 no
namespace-node-affinity
root@microk8s-admin:~# cat settings.yaml
istio-test: |
nodeSelectorTerms:
- matchExpressions:
- key: workload
operator: In
values:
- istio-deploys-here
Upgrading is rather easy, users who don't want to wait for #438 to be merged can just refresh the istio-operators
following this guide. Please note that istio-operators 1.17/stable
require juju >= 3.1 and Kubernetes 1.25 (at least).
The fix for this version of the charm is to just remove the default values from the Gateway
deployment, similar to how it is done in 1.17/stable.
Users can try this fix by deploying the charm in #438.
Fixed by #438
Bug Description
istio-gateway 1.16
has a defaultnodeSelectorTerms
forrequiredDuringSchedulingIgnoredDuringExecution
(see here that causes any customnodeSelectorTerm
injected by thenamespace-node-affinity-operator
to be "ORed", resulting in an unexpected scheduling as the default could be True before evaluating the injected term. That happens because:Please note this issue happens only in
1.16
, as greater versions will not have a default option (removed by https://github.com/canonical/istio-operators/commit/88c9b987a0371e88e574574c5917e79ca965418e)To Reproduce
Environment
Relevant Log Output
N/A
Additional Context
Similar issue