fail to pull metallb-speaker-image and metallb-container-imag
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
MetalLB Operator |
Invalid
|
Undecided
|
Unassigned |
Bug Description
metallb-controller deployment and metallb-speaker daemonset stuck in pulling charm images
- microk8s version: 1.26
- juju: 2.9.38
- metallb-controller: 1.26/stable, rev 37
- metallb-speaker: 1.26/stable, rev 32
juju status
metallb-
metallb-speaker/6* error idle 10.140.11.25 7472/TCP unknown container reason "ImagePullBackOff": Back-off pulling image "registry.
metallb-speaker/7 error idle 10.140.12.148 7472/TCP unknown container reason "ImagePullBackOff": Back-off pulling image "registry.
metallb-speaker/8 error idle 10.140.13.118 7472/TCP unknown container reason "ImagePullBackOff": Back-off pulling image "registry.
+ kubectl get pods -n metallb-system
NAME READY STATUS RESTARTS AGE
modeloperator-
metallb-
metallb-
metallb-
metallb-
metallb-
metallb-
metallb-
kubectl describe pods -n metallb-system metallb-
Failed to pull image "registry.
The password in set in secret but appeared not used by juju during image pull , this can be proved by
- Forbidden error in pod's log
- pulling the same image with password manually in microk8s nodes is successul
+ kubectl get secret -n metallb-system
NAME TYPE DATA AGE
model-exec kubernetes.
metallb-
metallb-
memberlist Opaque 1 88m
+ kubectl get -o=yaml secret metallb-
apiVersion: v1
data:
.dockerconfig
echo "^^base64-
{
"auths": {
"registry.
"Username": "docker-registry",
"Password": "MDAxOGxvY2F0aW
"Email": ""
}
}
}
# this works
microk8s.ctr image pull -u docker-
also pod spec has imagePullPolicy set to Always which prevent it from using the local cached images
Subscribe Field high since it impact COS deployment for PS6
turns out to be the proxy issues
change containerd_env to following (epscially add api.jujucharms.com to NO_PROXY) solve the issue
HTTPS_PROXY=http:// squid.internal: 3128 10.1.0. 0/16,10. 152.183. 0/24,api. jujucharms. com
NO_PROXY=
ulimit -n 65536 || true
ulimit -l 16384 || true
make issue as invalid