Virtual Nodes - Pod stuck in Pending state when referencing status.podIP from downward API

[jonstelly]

What happened:
Deploying a pod to an AKS Virtual Node, the pod is stuck in the Pending state if a container has:

env:
  - name: SERVING_POD_IP
    valueFrom:
      fieldRef:
        fieldPath: status.podIP

I see the following error in the aci linux connector pod:

time="2021-07-05T22:34:00Z" level=warning msg="requeuing \"default/acitest-wv7lc\" due to failed sync"
  error="failed to sync pod \"default/acitest-wv7lc\" in the provider: 
  unsupported fieldPath: status.podIP" key=default/acitest-wv7lc method=handleQueueItem node=virtual-node-aci-linux
  operatingSystem=Linux provider=azure watchedNamespace= workerId=1

What you expected to happen:
For the pod to start up. Below is a simple repro yaml for a job that displays the behavior. You can comment out the SERVING_POD_IP variable and it starts as expected. But the real use-case for this is Knative launching on the Virtual Nodes and they require that variable be set.

How to reproduce it (as minimally and precisely as possible):

run: kubectl apply -f ./acitest.yaml

apiVersion: batch/v1
kind: Job
metadata:
  name: acitest
spec:
  backoffLimit: 1
  template:
    spec:
      containers:
        - name: ubuntu
          image: ubuntu:latest
          command: ["uname", "-a"]
          resources:
            limits:
              cpu: 1
              memory: 32Mi
            requests:
              cpu: 1
              memory: 32Mi
          env:
            - name: SERVING_POD
              valueFrom:
                fieldRef:
                  apiVersion: v1
                  fieldPath: metadata.name
            - name: SERVING_POD_IP
              valueFrom:
                fieldRef:
                  fieldPath: status.podIP
      restartPolicy: Never
      nodeSelector:
        beta.kubernetes.io/os: linux
        kubernetes.io/role: agent
        type: virtual-kubelet   
      tolerations:
      - key: virtual-kubelet.io/provider
        operator: Exists
      - key: node.kubernetes.io/not-ready
        operator: Exists
        effect: NoExecute
        tolerationSeconds: 300
      - key: node.kubernetes.io/unreachable
        operator: Exists
        effect: NoExecute
        tolerationSeconds: 300
      - key: node.kubernetes.io/memory-pressure
        operator: Exists
        effect: NoSchedule    

Anything else we need to know?:
Knative in front of Virtual Nodes seems like it would be a very popular/common model. I see another couple users with the same issue here and another issue in this repository that was auto-closed: #1139

Environment:

• Kubernetes version (use kubectl version): 1.18.4 - 1.20.7
• Size of cluster (how many worker nodes are in the cluster?): 3 node, Virtual Nodes enabled
• General description of workloads in the cluster: Mixed dependencies + dotnet core components

Hi jonstelly, AKS bot here 👋
Thank you for posting on the AKS Repo, I'll do my best to get a kind human from the AKS team to assist you.

I might be just a bot, but I'm told my suggestions are normally quite good, as such:

1. If this case is urgent, please open a Support Request so that our 24/7 support team may help you faster.
2. Please abide by the AKS repo Guidelines and Code of Conduct.
3. If you're having an issue, could it be described on the AKS Troubleshooting guides or AKS Diagnostics?
4. Make sure your subscribed to the AKS Release Notes to keep up to date with all that's new on AKS.
5. Make sure there isn't a duplicate of this issue already reported. If there is, feel free to close this one and '+1' the existing issue.
6. If you have a question, do take a look at our AKS FAQ. We place the most common ones there!

Triage required from @Azure/aks-pm

Action required from @Azure/aks-pm

@macolso, @mikkelhegn would you be able to assist?

Issue Details

---

What happened:
Deploying a pod to an AKS Virtual Node, the pod is stuck in the Pending state if a container has:

env:
  - name: SERVING_POD_IP
    valueFrom:
      fieldRef:
        fieldPath: status.podIP

I see the following error in the aci linux connector pod:

time="2021-07-05T22:34:00Z" level=warning msg="requeuing \"default/acitest-wv7lc\" due to failed sync"
  error="failed to sync pod \"default/acitest-wv7lc\" in the provider: 
  unsupported fieldPath: status.podIP" key=default/acitest-wv7lc method=handleQueueItem node=virtual-node-aci-linux
  operatingSystem=Linux provider=azure watchedNamespace= workerId=1

What you expected to happen:
For the pod to start up. Below is a simple repro yaml for a job that displays the behavior. You can comment out the SERVING_POD_IP variable and it starts as expected. But the real use-case for this is Knative launching on the Virtual Nodes and they require that variable be set.

How to reproduce it (as minimally and precisely as possible):

run: kubectl apply -f ./acitest.yaml

apiVersion: batch/v1
kind: Job
metadata:
  name: acitest
spec:
  backoffLimit: 1
  template:
    spec:
      containers:
        - name: ubuntu
          image: ubuntu:latest
          command: ["uname", "-a"]
          resources:
            limits:
              cpu: 1
              memory: 32Mi
            requests:
              cpu: 1
              memory: 32Mi
          env:
            - name: SERVING_POD
              valueFrom:
                fieldRef:
                  apiVersion: v1
                  fieldPath: metadata.name
            - name: SERVING_POD_IP
              valueFrom:
                fieldRef:
                  fieldPath: status.podIP
      restartPolicy: Never
      nodeSelector:
        beta.kubernetes.io/os: linux
        kubernetes.io/role: agent
        type: virtual-kubelet   
      tolerations:
      - key: virtual-kubelet.io/provider
        operator: Exists
      - key: node.kubernetes.io/not-ready
        operator: Exists
        effect: NoExecute
        tolerationSeconds: 300
      - key: node.kubernetes.io/unreachable
        operator: Exists
        effect: NoExecute
        tolerationSeconds: 300
      - key: node.kubernetes.io/memory-pressure
        operator: Exists
        effect: NoSchedule    

Anything else we need to know?:
Knative in front of Virtual Nodes seems like it would be a very popular/common model. I see another couple users with the same issue here and another issue in this repository that was auto-closed: #1139

Environment:

• Kubernetes version (use kubectl version): 1.18.4 - 1.20.7
• Size of cluster (how many worker nodes are in the cluster?): 3 node, Virtual Nodes enabled
• General description of workloads in the cluster: Mixed dependencies + dotnet core components

Author:	jonstelly
Assignees:	-
Labels:	Needs Attention :wave:, action-required, addon/virtual-nodes, triage
Milestone:	-

Action required from @Azure/aks-pm