community icon indicating copy to clipboard operation
community copied to clipboard

Published 20 hours ago verified publisher icon aws-controllers-k8s

[efs-controller] Encrypted EFS filesystem never reaches synced status

Open gnadaban opened this issue 4 months ago • 4 comments

Describe the bug I'm trying to create a FileSystem resource that is encrypted with a custom KMS key with accompanying MountTargets and AccessPoint, but there are various issues:

  • The FileSystem CR is stuck in creating state while in AWS console the resource appears ready and available
  • If using the fileSystemRef for MountTarget and AccessPoint resources they are never created as the controller does not consider the target FileSystem resource ready ("the referenced resource is not synced yet.")

Steps to reproduce

  1. Attempt to create a FileSystem resource
  2. Attempt to create MountTarget and AccessPoint resources with fileSystemRef pointing at FileSystem resource
  3. FileSystem resource state is stuck in "creating"

Expected outcome

  1. The FileSystem resource should become "ready" after it is successfully created and its status in AWS console is "Available".
  2. The MountTarget and AccessPoint resources should be created as soon as the FileSystem resource is created and has an ARN

Environment

  • Kubernetes version: v1.30.4-eks-a737599
  • Using EKS (yes/no), if so version? yes
  • AWS service targeted (S3, RDS, etc.) EFS

gnadaban avatar Oct 02 '24 20:10 gnadaban