search

projectcalico / calico

Cloud native networking and network security
https://docs.tigera.io/calico/latest/about/
Apache License 2.0
5.99k stars 1.33k forks source link

calico pod failed when OPA gatekeeper 3.7.1v installed on the cluster. #7286

Closed mekalam closed 1 year ago

mekalam commented 1 year ago

Installed gatekeepern3.7.1 on 1.20 v of Kubernetes cluster and calico pods are failing to restart

Expected Behavior

calico pods should run even when OPA gatekeeper running in the cluster

Current Behavior

but currently the pod fails with the logs like "[ERROR] [696] felix/daemon.go couldn't read server version from server error=unknown panic: runtime error: invalid memory address or nil pointer dereference

Possible Solution

Steps to Reproduce (for bugs)

  1. install calico 3.20 version
  2. install OPA gatekeeper 3.7.1
  3. delete Calico pods
  4. delete OPA gatekeeper constraints and validating, mutating webhooks

Context

Your Environment

mgleung commented 1 year ago

@mekalam thanks for raising this. Is it possible to get the rest of the calico-node logs in order to get more context for the error? I also think that the error might have code line numbers associated with it for invalid memory addresses. Would you happen to have that? It might help us with debugging what exactly is going on.

sridhartigera commented 1 year ago

@mekalam Can you please get the logs?

caseydavenport commented 1 year ago

v3.20 is very old - could you please use a modern version of Calico and see if you still encounter this issue? If you do, please open a new issue.