Page MenuHomePhabricator
Create Task
Maniphest T322920

Import pause container image >= 3.5 (k8s 1.23 dependency)
Closed, ResolvedPublic
Actions

Description

As stated in the parent task, we'd need to have the pause container at version 3.5+ for k8s 1.23. It is not clear how we have imported the current version on our registry, so we should probably add a specific config to production-images to be future proof.

Steps:

  • Review the CHANGELOG and decide what version is needed.
  • Add production-images build + pause image configuration.
  • Build and publish the new image to the Docker registry (the new version should be compatible with the current 1.16 clusters but verify this as well).

Details

SubjectRepoBranchLines +/-
Add the pause imageoperations/docker-images/production-imagesmaster+41 -0
profile::kubernetes::node: add k8s_116 tag to infrapod's defaultoperations/puppetproduction+1 -8
k8s: pin the pause container image to the k8s_116 tag on stagingoperations/puppetproduction+7 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

elukey created this task.Nov 11 2022, 11:13 AM
JMeybohm mentioned this in T307943: Update Kubernetes clusters to v1.23.Nov 11 2022, 11:15 AM
jijiki moved this task from Incoming 🐫 to serviceops-radar on the serviceops board.Nov 14 2022, 1:07 PM
jijiki edited projects, added serviceops-radar; removed serviceops.
gerritbot added a comment.Nov 17 2022, 3:02 PM

Change 858345 had a related patch set uploaded (by Elukey; author: Elukey):

[operations/docker-images/production-images@master] Add the pause image

https://gerrit.wikimedia.org/r/858345

gerritbot added a project: Patch-For-Review.Nov 17 2022, 3:02 PM
elukey added a comment.Nov 17 2022, 5:04 PM

We currently have only pause:latest pushed on our registry, so we should:

  1. Push a new tag from the build server
docker pull docker-registry.discovery.wmnet/pause:latest
docker tag docker-registry.discovery.wmnet/pause:latest docker-registry.discovery.wmnet/pause:old
  1. Set the tag in puppet (profile::kubernetes::infra_pod) so that the current image is configured and "locked".
  1. Build and push the new 3.6-1 image/tag, and test it on some staging cluster.
Stashbot added a comment.Nov 18 2022, 9:16 AM

Mentioned in SAL (#wikimedia-operations) [2022-11-18T09:16:49Z] <elukey> push the 'k8s_116' tag for docker-registry.discovery.wmnet/pause - T322920

gerritbot added a comment.Nov 18 2022, 9:21 AM

Change 858546 had a related patch set uploaded (by Elukey; author: Elukey):

[operations/puppet@production] k8s: pin the pause container image to the k8s_116 tag on staging

https://gerrit.wikimedia.org/r/858546

gerritbot added a comment.Nov 18 2022, 3:18 PM

Change 858546 merged by Elukey:

[operations/puppet@production] k8s: pin the pause container image to the k8s_116 tag on staging

https://gerrit.wikimedia.org/r/858546

elukey added a comment.Nov 18 2022, 3:33 PM
elukey@ml-staging2002:~$  sudo docker image ls | grep pause
docker-registry.discovery.wmnet/pause                                                                       k8s_116    f2d161a2bc52   5 years ago     747kB
docker-registry.discovery.wmnet/pause                                                                       latest     f2d161a2bc52   5 years ago     747kB

The k8s_116 tag was pulled down after killing a pod, I'll do more tests on staging but it looks fine :)

Next steps:

elukey updated the task description. (Show Details)Nov 18 2022, 3:33 PM
gerritbot added a comment.Nov 21 2022, 9:22 AM

Change 858995 had a related patch set uploaded (by Elukey; author: Elukey):

[operations/puppet@production] profile::kubernetes::node: add k8s_116 tag to infrapod's default

https://gerrit.wikimedia.org/r/858995

gerritbot added a comment.Nov 21 2022, 9:40 AM

Change 858995 merged by Elukey:

[operations/puppet@production] profile::kubernetes::node: add k8s_116 tag to infrapod's default

https://gerrit.wikimedia.org/r/858995

gerritbot added a comment.Nov 21 2022, 10:17 AM

Change 858345 merged by Elukey:

[operations/docker-images/production-images@master] Add the pause image

https://gerrit.wikimedia.org/r/858345

elukey updated the task description. (Show Details)Nov 21 2022, 10:20 AM
elukey closed this task as Resolved.Nov 21 2022, 10:22 AM

The new image will be tested on Pontoon with Kubernetes 1.23. For the moment I am closing the task, let's reopen if anything pops up.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL