bcollard
commented
2 years ago Another error reported by a customer, after he ran glooctl cluster register .. and he got the KubernetesCluster created but not the GlooInstance CR:
{"level":"error","ts":1661851560.0879245,"logger":"gloo-fed","msg":"Failed to get API Group-Resources","version":"1.12.9","error":"the server has asked for the client to provide credentials","stacktrace":"sigs.k8s.io/controller-runtime/pkg/manager.New\n\t/go/pkg/mod/sigs.k8s.io/controller-runtime@v0.9.7/pkg/manager/manager.go:312\ngithub.com/solo-io/skv2/pkg/multicluster/watch.(*clusterWatcher).startManager.func1.1\n\t/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/watch/watcher.go:99\ngithub.com/avast/retry-go.Do\n\t/go/pkg/mod/github.com/avast/retry-go@v2.4.3+incompatible/retry.go:103\ngithub.com/solo-io/skv2/pkg/multicluster/watch.(*clusterWatcher).startManager.func1\n\t/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/watch/watcher.go:97"}
panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x1b15c00]
goroutine 581 [running]:
github.com/solo-io/skv2/pkg/reconcile.(*runner).RunReconciler(0xc003b6d320, {0x38be160, 0xc0005d46c0}, {0x38883e0, 0xc000698a40}, {0x0, 0x0, 0x0})
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/reconcile/runner.go:96 +0x80
github.com/solo-io/skv2/pkg/multicluster/reconcile.(*reconcilerList).runAll(0xc000eca270, {0xc004eb9a88, 0x8}, {0x3888420, 0xc003b6d320})
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/reconcile/reconcile.go:159 +0x2a6
github.com/solo-io/skv2/pkg/multicluster/reconcile.(*clusterLoopSet).ensureReconcilers(0xc000eb9080, 0xc000eca270)
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/reconcile/reconcile.go:109 +0x17a
github.com/solo-io/skv2/pkg/multicluster/reconcile.(*clusterLoopRunner).AddCluster(0xc000ec45a0, {0x38be160, 0xc0003ec580}, {0xc004eb9a88, 0x8}, {0x0, 0x0})
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/reconcile/reconcile.go:48 +0x1d5
github.com/solo-io/skv2/pkg/multicluster/watch.(*handlerList).AddCluster(0xc000eca030, {0x38be160, 0xc0003ec580}, {0xc004eb9a88, 0x8}, {0x0, 0x0})
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/watch/watcher.go:230 +0x1c4
github.com/solo-io/skv2/pkg/multicluster/watch.(*clusterWatcher).startManager.func1.1()
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/watch/watcher.go:103 +0x3f6
github.com/avast/retry-go.Do(0xc003b75fa8, {0xc000093f90, 0x3, 0x3})
/go/pkg/mod/github.com/avast/retry-go@v2.4.3+incompatible/retry.go:103 +0x2a5
github.com/solo-io/skv2/pkg/multicluster/watch.(*clusterWatcher).startManager.func1()
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/watch/watcher.go:97 +0x188
created by github.com/solo-io/skv2/pkg/multicluster/watch.(*clusterWatcher).startManager
/go/pkg/mod/github.com/solo-io/skv2@v0.21.7/pkg/multicluster/watch/watcher.go:90 +0xdb
Stream closed EOF for gloo-fed/gloo-fed-67566bcd69-qq448 (gloo-fed)
github-actions[bot]
Gloo Edge Version
1.12.x (latest stable)
Kubernetes Version
1.23.x
Describe the bug
Given a gloo-fed deployment running on cluster 1, A Gloo Edge deployment running on cluster 2, After I register cluster 2 with
glooctl cluster register ...If the api-server address that is set in the secret associated with the KubernetesCluster CR is not reachable, Then the gloo-fed pod will crash with the following error message:On the gloo-fed cluster, the KubernetesCluster CR references a Secret with something similar to:
kubectl -n gloo-system get secret my-remote-cluster -o jsonpath="{.data.kubeconfig}" | base64 -dSteps to reproduce the bug
See above
Expected Behavior
Expecting no crash at all. Updating the KubernetesCluster resource with a 'FAILED' status would be better.
The current workaround is to force another api-server address with the command-line parameter
--local-cluster-domain-overrideBut without this fix, the gloo-fed pod is crashing.Additional Context
No response