Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

reset issue with KMS and DNS not working (?) #10020

Open
Tracked by #9825
smira opened this issue Dec 23, 2024 · 1 comment
Open
Tracked by #9825

reset issue with KMS and DNS not working (?) #10020

smira opened this issue Dec 23, 2024 · 1 comment
Assignees
@smira

Comments

@smira
Copy link
Member

smira commented Dec 23, 2024
edited
Loading 

[ 4142.343629] [talos] volume status {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "EPHEMERAL", "phase": "failed -> failed", "error": "error formatting and encrypting volume: no handlers available to get encryption keys from: 1 error occurred:\n\t* failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:39425->[::1]:53: read: connection refused\n\n"}
[ 4142.345569] sda: sda1 sda2 sda3 sda4 sda5 sda6
[ 4145.072486] [talos] reset request received. actorID: 0af76a80-5b35-4bba-aba3-a7c289c78273
[ 4160.988287] [talos] controller failed {"component": "controller-runtime", "controller": "siderolink.ManagerController", "error": "error provisioning: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:38508->[::1]:53: read: connection refused"}
[ 4172.199490] [talos] formatting and encrypting volume {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "STATE"}
[ 4172.204712] [talos] failed to call key handler {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "STATE", "slot": 0, "error": "failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:44454->[::1]:53: read: connection refused"}
[ 4172.216416] [talos] volume status {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "STATE", "phase": "failed -> failed", "error": "error formatting and encrypting volume: no handlers available to get encryption keys from: 1 error occurred:\n\t* failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:44454->[::1]:53: read: connection refused\n\n"}
[ 4172.237621] sda: sda1 sda2 sda3 sda4 sda5 sda6
[ 4172.342403] [talos] formatting and encrypting volume {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "EPHEMERAL"}
[ 4172.347322] [talos] failed to call key handler {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "EPHEMERAL", "slot": 0, "error": "failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:60332->[::1]:53: read: connection refused"}
[ 4172.357889] [talos] volume status {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "EPHEMERAL", "phase": "failed -> failed", "error": "error formatting and encrypting volume: no handlers available to get encryption keys from: 1 error occurred:\n\t* failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:60332->[::1]:53: read: connection refused\n\n"}
[ 4172.359799] sda: sda1 sda2 sda3 sda4 sda5 sda6
[ 4194.926096] [talos] reset request received. actorID: 0846d43d-0529-453d-a36c-6fbdde899920
[ 4197.169709] [talos] controller failed {"component": "controller-runtime", "controller": "k8s.NodeApplyController", "error": "1 error(s) occurred:\n\ttimeout"}
[ 4202.200616] [talos] formatting and encrypting volume {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "STATE"}
[ 4202.205453] [talos] failed to call key handler {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "STATE", "slot": 0, "error": "failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:48114->[::1]:53: read: connection refused"}
[ 4202.215899] [talos] volume status {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "STATE", "phase": "failed -> failed", "error": "error formatting and encrypting volume: no handlers available to get encryption keys from: 1 error occurred:\n\t* failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:48114->[::1]:53: read: connection refused\n\n"}
[ 4202.218225] sda: sda1 sda2 sda3 sda4 sda5 sda6
[ 4202.335599] [talos] formatting and encrypting volume {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "EPHEMERAL"}
[ 4202.340910] [talos] failed to call key handler {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "EPHEMERAL", "slot": 0, "error": "failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:34050->[::1]:53: read: connection refused"}
[ 4202.351658] [talos] volume status {"component": "controller-runtime", "controller": "block.VolumeManagerController", "volume": "EPHEMERAL", "phase": "failed -> failed", "error": "error formatting and encrypting volume: no handlers available to get encryption keys from: 1 error occurred:\n\t* failed to seal KMS passphrase, slot 0: rpc error: code = Unavailable desc = dns: A record lookup error: lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:34050->[::1]:53: read: connection refused\n\n"}
[ 4202.353725] sda: sda1 sda2 sda3 sda4 sda5 sda6
@smira smira mentioned this issue Dec 23, 2024
Closed
@smira smira self-assigned this Dec 23, 2024
@smira
Copy link
Member Author

smira commented Dec 23, 2024 

lookup xxxxx.siderolink.omni.siderolabs.io on [::1]:53: read udp [::1]:34050->[::1]:53: read: connection refused

this is not HostDNS, but rather looks like /etc/resolv.conf was never written (?)

@smira smira changed the title reset issue with Talos KMS and host DNS not working (?) reset issue with KMS and DNS not working (?) Dec 23, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@smira smira

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@smira