Page MenuHomePhabricator
Create Task
Maniphest T228887

Update pause container in our internal registry
Closed, ResolvedPublic
Actions

Description

Our current cluster seems to use the ancient pause:2.0 container. We also have the pause:3.0 container loaded into our registry, but the update to pause:3.1 seems good: https://github.com/kubernetes/kubernetes/blob/master/build/pause/CHANGELOG.md

We should sort out loading that in and then configuring our kubeadm deploy process to use the internal registry for this core-to-everything-kubernetes container. If we don't we will not be able to run much of anything on this once the admission webhook is deployed.

Details

SubjectRepoBranchLines +/-
toolforge: fix typo kubelet file contentoperations/puppetproduction+1 -1
toolforge: add internal pause container to all the other kubeletsoperations/puppetproduction+6 -0
toolforge: set kubeadm to use internal registry for pause containeroperations/puppetproduction+3 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

Bstorm created this task.Jul 24 2019, 3:20 PM
gerritbot added a comment.Jul 24 2019, 6:20 PM

Change 525339 had a related patch set uploaded (by Bstorm; owner: Bstorm):
[operations/puppet@production] toolforge: set kubeadm to use internal registry for pause container

https://gerrit.wikimedia.org/r/525339

gerritbot added a project: Patch-For-Review.Jul 24 2019, 6:20 PM
Stashbot added a comment.Jul 24 2019, 8:48 PM

Mentioned in SAL (#wikimedia-cloud) [2019-07-24T20:48:19Z] <bstorm_> rebuilt toolsbeta-test cluster with the internal version of the pause container T228887 T215531

Stashbot mentioned this in T215531: Deploy upgraded Kubernetes to toolsbeta.Jul 24 2019, 8:48 PM
gerritbot added a comment.Jul 24 2019, 8:51 PM

Change 525339 merged by Bstorm:
[operations/puppet@production] toolforge: set kubeadm to use internal registry for pause container

https://gerrit.wikimedia.org/r/525339

gerritbot added a comment.Jul 24 2019, 9:57 PM

Change 525434 had a related patch set uploaded (by Bstorm; owner: Bstorm):
[operations/puppet@production] toolforge: add internal pause container to all the other kubelets

https://gerrit.wikimedia.org/r/525434

gerritbot added a comment.Jul 24 2019, 9:59 PM

Change 525434 merged by Bstorm:
[operations/puppet@production] toolforge: add internal pause container to all the other kubelets

https://gerrit.wikimedia.org/r/525434

gerritbot added a comment.Jul 24 2019, 10:02 PM

Change 525436 had a related patch set uploaded (by Bstorm; owner: Bstorm):
[operations/puppet@production] toolforge: fix typo kubelet file content

https://gerrit.wikimedia.org/r/525436

gerritbot added a comment.Jul 24 2019, 10:04 PM

Change 525436 merged by Bstorm:
[operations/puppet@production] toolforge: fix typo kubelet file content

https://gerrit.wikimedia.org/r/525436

Bstorm closed this task as Resolved.Jul 24 2019, 10:07 PM

It's ugly (adding extra, duplicate args to kubelet), but it's the only way to consistently make this work with all kubeadm joins AND keep the configs sane for kubeadm upgrades in the future. This is done.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL