-
Notifications
You must be signed in to change notification settings - Fork 1.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
cubestore S3 credentials regression in v0.35.17 #8163
Comments
Hello @adamstruck , Did you specify both Thanks |
I only set I am able to run v0.35.16 without issue. |
Is it correct that you are using STS (AWS_WEB_IDENTITY_TOKEN_FILE), IAM?
This error comes from fallback logic that is trying to resolve auth from magic IP 169.254.169.254. It's a fallback variant. |
Yes, s3 access is being managed using IAM roles for the nodes in the EKS cluster. |
@ovr do you think this is something you will be able to fix soon? |
@adamstruck I tried to find out what had changed in the library, but I could not find anything that can affect you. |
Did cube start doing anything differently starting in that version? |
Or maybe it is this line: I am not familiar with rust dependency management, but this seems to imply that not all features are being included after the bump? |
I still am running into this issue with the latest version: v0.35.22 |
We didn't start doing anything differently. I reviewed all changes in the In the production, we use IAM, and it works correctly. You can check it from the pod, via curl to Do you see any error? It should be a correct JSON. Thanks |
I think you are on to something...
Any ideas? |
Based on https://github.com/durch/rust-s3/blob/v0.32.0/aws-creds/src/credentials.rs#L173 it looks like this should be supported. This seems like it is caused by the bug described in durch/rust-s3#286. Could you bump |
We are experiencing the same issue although we get the following error,
|
Right now, it's not possible to use the 0.33 release because it has bugs 🫠 At the same time, the official SDK from AWS has problems. So, I backported the fix from durch/rust-s3#286 in https://github.com/cube-js/cube/pull/8195/files |
@adamstruck Could you give a try a latest release? https://github.com/cube-js/cube/releases/tag/v0.35.24 Ty |
@ovr the issue still persists on my side, tested v0.35.24
|
@ovr the issue persists here as well, although it it slightly different it was introduced at the same release.
|
@ovr I am still seeing errors with v0.35.24
|
@ovr could the |
I hacked around this issue by authenticating via STS in a separate process and storing the returned credentials in |
@adamstruck If it's still an issue, please feel free to provide PRs to https://github.com/cube-js/rust-s3 and to the Cube Store itself. |
If you are interested in working on this issue, please go ahead and provide PR for that. |
@adamstruck Could you give a try with v0.35.34? Thanks |
@ovr looks the the issue is fixed |
@adamstruck Thank you for testing then I am going to close this issue. |
I'm still experiencing this issue in |
Describe the bug
When I attempted to upgrade from v0.35.14 I started to see this error:
Version:
v0.35.17
The text was updated successfully, but these errors were encountered: