Open hzxuzhonghu opened 1 month ago
@lec-bit Can you take a look
Istiod log
2024-05-31T03:33:39.615011Z info ads Push debounce stable[10] 1 for config Address//Kubernetes//Pod/kmesh-system/kmesh-756l6: 104.422892ms since last change, 104.422763ms since last push, full=false
2024-05-31T03:33:39.615136Z info ads XDS: Incremental Pushing ConnectedEndpoints:4 Version:2024-05-31T03:30:16Z/3
2024-05-31T03:33:41.058828Z warn serverca impersonation failed for identity spiffe:///ns/istio-system/sa/ztunnel, error: no node authorizer for cluster client=10.244.0.252:60882
2024-05-31T03:33:41.667091Z warn serverca impersonation failed for identity spiffe:///ns/istio-system/sa/ztunnel, error: no node authorizer for cluster client=10.244.0.252:60896
2024-05-31T03:33:41.669378Z warn serverca impersonation failed for identity spiffe:///ns/default/sa/sleep, error: no node authorizer for cluster client=10.244.0.252:60896
2024-05-31T03:33:41.669574Z warn serverca impersonation failed for identity spiffe:///ns/default/sa/bookinfo-productpage, error: no node authorizer for cluster client=10.244.0.252:60896
2024-05-31T03:33:41.669738Z warn serverca impersonation failed for identity spiffe:///ns/default/sa/bookinfo-reviews, error: no node authorizer for cluster client=10.244.0.252:60896
2024-05-31T03:33:42.355468Z warn serverca impersonation failed for identity spiffe:///ns/default/sa/bookinfo-reviews, error: no node authorizer for cluster client=10.244.0.252:60908
2024-05-31T03:33:42.355718Z warn serverca impersonation failed for identity spiffe:///ns/default/sa/httpbin, error: no node authorizer for cluster client=10.244.0.252:60908
2024-05-31T03:33:42.355883Z warn serverca impersonation failed for identity spiffe:///ns/default/sa/bookinfo-details, error: no node authorizer for cluster client=10.244.0.252:60908
2024-05-31T03:33:42.568300Z warn serverca impersonation failed for identity spiffe:///ns/default/sa/bookinfo-details, error: no node authorizer for cluster client=10.244.0.252:60914
2024-05-31T03:33:42.569249Z warn serverca impersonation failed for identity spiffe:///ns/kube-system/sa/coredns, error: no node authorizer for cluster client=10.244.0.252:60914
2024-05-31T03:33:42.655705Z warn serverca impersonation failed for identity spiffe:///ns/kube-system/sa/coredns, error: no node authorizer for cluster client=10.244.0.252:60916
2024-05-31T03:33:42.657634Z warn serverca impersonation failed for identity spiffe:///ns/istio-system/sa/istiod, error: no node authorizer for cluster client=10.244.0.252:60916
2024-05-31T03:33:42.665555Z warn serverca impersonation failed for identity spiffe:///ns/istio-system/sa/istiod, error: no node authorizer for cluster client=10.244.0.252:60932
The query operation is performed before the add operation. As a result, the query fails and a large number of errors are reported.
Fixed it in https://github.com/kmesh-net/kmesh/pull/416
What happened:
What you expected to happen:
How to reproduce it (as minimally and precisely as possible):
Anything else we need to know?:
Environment:
Kmesh version: kmesh-daemon version { "gitVersion": "1.0-dev", "gitCommit": "12b8d0cb37809d17ad49f52d6d0ac8e2c0701f52", "gitTreeState": "clean", "buildDate": "2024-05-31T02:41:37Z", "goVersion": "go1.22.1", "compiler": "gc", "platform": "linux/amd64" }
Others: