Comments (10)
Most likely ACLs for the [email protected]
service account are missing somewhere.
from test-infra.
I had created the project using the standard create project script which should have setup ACLs correctly.
The job is running in k8s-jkns-pr-bldr-e2e-gce-fdrtn
project and we are running gcloud docker push <image-name>
to the same project, so no extra credentials should be required.
@madhusudancs had suggested running gsutil acl to ensure the right ACL on the GCS bucket, but running:
gsutil acl ch -u [email protected]:R gs://artifacts.k8s-jkns-pr-bldr-e2e-gce-fdrtn.appspot.com
obviously fails with
BucketNotFoundException: BucketNotFoundException: 404 gs://artifacts.k8s-jkns-pr-bldr-e2e-gce-fdrtn.appspot.com bucket does not exist.
Trying to create that bucket using the UI asks me to verify that I own appspot.com :)
cc @colhom How did you set up artifacts.k8s-jkns-e2e-gce-federation.appspot.com
GCS?
from test-infra.
@madhusudancs had suggested running gsutil acl to ensure the right ACL on the GCS bucket, but running:
If you are running the build jobs and tests jobs in the same project, you don't need any of these ACL changes I suggested. You only need them when the build artifacts and test VMs are in different projects.
Trying to create that bucket using the UI asks me to verify that I own appspot.com :)
I don't think you can create appspot.com buckets. And also, you don't have to :) GCR automatically creates this bucket for you when you run gcloud docker push
the first time.
I think @ixdy is right. This is a credentials issue. And I think it is likely because (pure guess, zero evidence) the job that's running gcloud docker push
doesn't have push access to gcr.io/k8s-jkns-pr-bldr-e2e-gce-fdrtn/hyperkube
.
I know this feels like a frustrating chicken & egg problem. I think the solution here is to add the service account of the project where you run gcloud docker push
(kubernetes-jenkins-pull
I think?) as an editor or some other role which has write access to your k8s-jkns-pr-bldr-e2e-gce-fdrtn
project. Ping me on chat, I will point you to the right links/pages.
from test-infra.
Ran the following command which should have been run anyway by the create_jenkins_project script if i had set the flags correctly while calling it (which I may or may not have :)):
gcloud projects add-iam-policy-binding "k8s-jkns-pr-bldr-e2e-gce-fdrtn" --member "serviceAccount:[email protected]" --role roles/editor
Will see if that fixes the problem.
Thanks!
from test-infra.
That didnt fix it.
Still the same error.
from test-infra.
@nikhiljindal link to the log?
from test-infra.
@ixdy https://k8s-gubernator.appspot.com/build/kubernetes-jenkins/pr-logs/pull/30458/kubernetes-pull-build-test-federation-e2e-gce/11/
from test-infra.
Argh! https://github.com/kubernetes/kubernetes/blob/master/hack/jenkins/build.sh#L56
I'm pretty sure we don't need this git clean
. I'm going to test just removing it.
from test-infra.
Removing git clean
appears to have worked: https://k8s-gubernator.appspot.com/build/kubernetes-jenkins/pr-logs/pull/32158/kubernetes-pull-build-test-federation-e2e-gce/16/
Next issue is a lack of resources. :)
from test-infra.
The image push issue is fixed now.
Thanks @ixdy !
The error now is:
ERROR: (gcloud.compute.networks.create) Some requests did not succeed:
- Quota 'NETWORKS' exceeded. Limit: 5.0
I have submitted a request for increasing the network quota to 15.
from test-infra.
Related Issues (20)
- Dynamic scheduling of Prowjobs to clusters HOT 6
- `milestoneapplier` plugin not adding milestone to PRs for k/website HOT 4
- Branch protection rules prevent first PR of a merge-batch from being merged HOT 4
- k8s-infra-prow-builds is frequently failing to schedule due to capacity HOT 15
- Assign/CC doesn't work when there is trailing text HOT 3
- [ci-kubernetes-e2e-gce-device-plugin-gpu] NVIDIA K80 end of support HOT 24
- `Spyglass` doesn't load the build-log when the file is very large HOT 7
- Update `sigs.k8s.io/[email protected]` HOT 7
- Cleanup and update `releng/test_config.yaml` HOT 5
- Test HOT 2
- cherrypicker can't create cherry-pick if PR contains more that 300 files HOT 5
- migrate away from `test-infra-trusted` build cluster HOT 22
- Failed job message persists in PR despite job not being triggered and retired HOT 2
- pj-on-kind doesn't work anymore HOT 4
- [doc] The link to the source in `prow/README.md`results in a 404 error HOT 1
- Migrate CRI-O jobs away from `kubernetes_e2e.py` HOT 1
- Change etcd testgrid to points to etcd repo HOT 7
- Reporting periodic jobs failures to slack channel after number of consequent failures HOT 2
- CRI-O install service doesn't restart on failures HOT 1
- Migration of etcd-io/etcd GitHub Actions to Prow HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from test-infra.