You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
What happened:
On a fresh installation, using the thick plugin, I can see the following errors in the logs.
E1114 09:20:04.454203 4190955 reflector.go:147] k8s.io/client-go/informers/factory.go:159: Failed to watch *v1.Pod: failed to list *v1.Pod: pods is forbidden: User "system:serviceaccount:kube-system:multus" cannot list resource "pods" in API group "" at the cluster scope
What you expected to happen:
There to be no error in the log
Once a pod is running check the logs. Anything else we need to know?:
I was able to remove it by editing the multus clusterrole by adding the list the lib verb.
apiGroups:
""
resources:
pods
pods/status
verbs:
get
update
list
Environment:
Multus version: snapshot-thick
Kubernetes version (use kubectl version): v1.30.0
Primary CNI for Kubernetes cluster: containerd
The text was updated successfully, but these errors were encountered:
What happened:
On a fresh installation, using the thick plugin, I can see the following errors in the logs.
E1114 09:20:04.454203 4190955 reflector.go:147] k8s.io/client-go/informers/factory.go:159: Failed to watch *v1.Pod: failed to list *v1.Pod: pods is forbidden: User "system:serviceaccount:kube-system:multus" cannot list resource "pods" in API group "" at the cluster scope
What you expected to happen:
There to be no error in the log
How to reproduce it (as minimally and precisely as possible):
Deploy the latest thick deployment https://github.com/k8snetworkplumbingwg/multus-cni/blob/master/deployments/multus-daemonset-thick.yml
Once a pod is running check the logs.
Anything else we need to know?:
I was able to remove it by editing the multus clusterrole by adding the list the lib verb.
resources:
verbs:
Environment:
kubectl version): v1.30.0The text was updated successfully, but these errors were encountered: