Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cannot install in GKE Autopilot #7

Open
anukul opened this issue Jan 23, 2024 · 3 comments
Open

Cannot install in GKE Autopilot #7

anukul opened this issue Jan 23, 2024 · 3 comments

Comments

@anukul
Copy link

anukul commented Jan 23, 2024

image 
Error: INSTALLATION FAILED: 1 error occurred:
	* admission webhook "warden-validating.common-webhooks.networking.gke.io" denied the request: GKE Warden rejected the request because it violates one or more constraints.
Violations details: {"[denied by autogke-no-write-mode-hostpath]":["hostPath volume data in container vector is accessed in write mode; disallowed in Autopilot.","hostPath volume var-lib used in container vector uses path /var/lib which is not allowed in Autopilot. Allowed path prefixes for hostPath volumes are: [/var/log/].","hostPath volume procfs used in container vector uses path /proc which is not allowed in Autopilot. Allowed path prefixes for hostPath volumes are: [/var/log/].","hostPath volume sysfs used in container vector uses path /sys which is not allowed in Autopilot. Allowed path prefixes for hostPath volumes are: [/var/log/]."]}
@anukul
Copy link
Author

anukul commented Jan 23, 2024

Related - vectordotdev/vector#16871

@curusarn
Copy link
Contributor

Hi @anukul,

Thank you for reaching out!

I'm passing this on to the team to get this resolved for you. I'll make sure to keep you updated here.

Thanks again for rasing this.

@scotchka
Copy link

Encountered the same error with GKE Autopilot:

✗ helm install betterstack-logs betterstack-logs/betterstack-logs -f values.yaml \
  --set metrics-server.enabled=false
W0722 15:44:02.000180   91146 warnings.go:70] autopilot-default-resources-mutator:Autopilot updated DaemonSet default/betterstack-logs-vector: defaulted unspecified 'cpu' resource for containers [vector] (see http://g.co/gke/autopilot-defaults).
Error: INSTALLATION FAILED: 1 error occurred:
	* admission webhook "warden-validating.common-webhooks.networking.gke.io" denied the request: GKE Warden rejected the request because it violates one or more constraints.
Violations details: {"[denied by autogke-no-write-mode-hostpath]":["hostPath volume data in container vector is accessed in write mode; disallowed in Autopilot.","hostPath volume var-lib used in container vector uses path /var/lib which is not allowed in Autopilot. Allowed path prefixes for hostPath volumes are: [/var/log/].","hostPath volume procfs used in container vector uses path /proc which is not allowed in Autopilot. Allowed path prefixes for hostPath volumes are: [/var/log/].","hostPath volume sysfs used in container vector uses path /sys which is not allowed in Autopilot. Allowed path prefixes for hostPath volumes are: [/var/log/]."]}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@scotchka @curusarn @anukul