Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Race condition while generating resolv-for-kubelet.conf #782

Open
mimiteto opened this issue May 29, 2024 · 0 comments
Open

Race condition while generating resolv-for-kubelet.conf #782

mimiteto opened this issue May 29, 2024 · 0 comments
Labels
area/robustness Robustness, reliability, resilience related kind/bug Bug platform/openstack OpenStack platform/infrastructure

Comments

@mimiteto
Copy link

How to categorize this issue?

/area robustness
/kind bug
/platform openstack

What happened:
/etc/resolv-for-kubelet.conf was generated without any nameserver in it.
Observing the (redacted) logs:

2024-05-27T08:45:12.168190+0000 node-name systemd[1]: Starting update-resolv-conf.service - update /etc/resolv-for-kubelet.conf on start and after each change of /run/systemd/resolve/resolv.conf...
2024-05-27T08:45:12.192931+0000 node-name update-resolv-conf.sh[2138034]: updated /etc/resolv-for-kubelet.conf
2024-05-27T08:45:12.193163+0000 node-name systemd[1]: update-resolv-conf.service: Deactivated successfully.
2024-05-27T08:45:12.193349+0000 node-name systemd[1]: Finished update-resolv-conf.service - update /etc/resolv-for-kubelet.conf on start and after each change of /run/systemd/resolve/resolv.conf.

and when checked:

root@node-name:/# ls -la --full /run/systemd/resolve/resolv.conf
-rw-r--r-- 1 systemd-resolve systemd-resolve 833 2024-05-27 08:45:12.188413386 +0000 /run/systemd/resolve/resolv.conf

root@node-name:/# ls -la --full /etc/resolv*
-rw-r--r-- 1 root root 906 2024-05-27 08:45:12.168411571 +0000 /etc/resolv-for-kubelet.conf
lrwxrwxrwx 1 root root  32 2023-11-03 00:00:00.000000000 +0000 /etc/resolv.conf -> /run/systemd/resolve/resolv.conf

What you expected to happen:
/etc/resolv-for-kubelet.conf to always be generated with the latest data.

How to reproduce it (as minimally and precisely as possible):

Anything else we need to know?:
I see that we are handling this in https://github.com/gardener/gardener-extension-provider-openstack/blob/master/pkg/webhook/controlplane/ensurer.go#L390
We are generating a shell script that reacts on being called by a one shot service on path changes.
This works nicely on a file change but fails if called multiple times while systemd is processing the spawn of that process.
Issue stems from the way systemd will handle multiple calls from the same time if received for the state we are already in.

Environment:

  • Gardener version (if relevant):
  • Extension version: v1.39.2
  • Kubernetes version (use kubectl version): v1.28.6
  • Cloud provider or hardware configuration: Openstack
  • Others:
@gardener-robot gardener-robot added area/robustness Robustness, reliability, resilience related kind/bug Bug platform/openstack OpenStack platform/infrastructure labels May 29, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/robustness Robustness, reliability, resilience related kind/bug Bug platform/openstack OpenStack platform/infrastructure
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mimiteto @gardener-robot