Skip to content

Update to Kubernetes v1.10#70

Merged
ijc merged 2 commits intolinuxkit:masterfrom
ijc:kube-v1.10
Apr 9, 2018
Merged

Update to Kubernetes v1.10#70
ijc merged 2 commits intolinuxkit:masterfrom
ijc:kube-v1.10

Conversation

@ijc
Copy link
Contributor

@ijc ijc commented Apr 9, 2018

This is a carry of #68.

I needed to workaround rootfsPropagation: shared seemingly not working (maybe this is opencontainers/runc#1755, I need to investigate more to be sure).

It was also necessary to bump a bunch of versions in the image cache and to update to a newer cri in lockstep (see the commit message for details).

Ian Campbell added 2 commits April 6, 2018 15:45
Workaround rootfsPropagation: shared brokenness.
7efaec5 
Despite using `rootfsPropagation` after updating to Kubernetes v1.10 (not done
here yet) we are seeing:

    RunContainerError: failed to start container 4ea4bde9b43a9eb241a5d7d98abf87184938f85ce9139949a3a246b6fe6b8985":
      Error response from daemon:
        linux mounts: path /etc/kubernetes/pki/etcd is mounted on /etc/kubernetes but it is not a shared or slave mount

Workaround this by temporarily (re)doing it in the entrypoint.

Signed-off-by: Ian Campbell <ijc@docker.com>
Update to Kubernetes v1.10.0.
a060e62 
This also required updating some image versions in the caches:

    kube_dns_version: 1.14.7 → 1.14.8
    pause_version:    3.0    → 3.1
    etcd_version:     3.1.11 → 3.1.12

From https://kubernetes.io/docs/imported/release/notes/#before-upgrading:

    [action-required] The Container Runtime Interface (CRI) version has increased from v1alpha1 to v1alpha2.
      Runtimes implementing the CRI will need to update to the new version, which configures container
      namespaces using an enumeration rather than booleans. (#58973, @verb)

Thus we must update to a newer cri-containerd in lock-step. However this is
made more complicated because cri-containerd is no longer a standalone daemon
but has become a containerd plugin, which will require some rearchitecting (and
which is so far only part of containerd v1.1-rc).  Luckily the version right
before standalone mode was deleted is available in a branch and supports the
required API version so switch to that here as a stop gap measure.

Note that the naming has changed kubernetes-incubator/cri-containerd →
containerd/cri-containerd → containerd/cri with the branch we are using being
at the middle step so update the naming and paths appropriately.

The command line options have changed a bit, so adjust.

Signed-off-by: Ian Campbell <ijc@docker.com>
@ijc
Copy link
Contributor Author

ijc commented Apr 9, 2018

rtf tests are running now.

This was referenced Apr 9, 2018
Closed
Open
Closed
Open
@ijc
Copy link
Contributor Author

ijc commented Apr 9, 2018

rtf is happy:

$ rtf run
LABELS: linux, Debian, testing, amd64
ID: 2fdef35e-e507-4cf9-aafe-3b0ddbcae2b1
[PASS    ] kubernetes.smoke.cri-bridge 222.72s
[PASS    ] kubernetes.smoke.cri-weave 240.57s
[PASS    ] kubernetes.smoke.docker-bridge 259.39s
[PASS    ] kubernetes.smoke.docker-weave 263.67s
[SUMMARY ] LogDir: 2fdef35e-e507-4cf9-aafe-3b0ddbcae2b1
[SUMMARY ] Version: testing
[SUMMARY ] Passed: 4
[SUMMARY ] Failed: 0
[SUMMARY ] Cancelled: 0
[SUMMARY ] Skipped: 0
[SUMMARY ] Duration: 986.68s

results.zip

@ijc ijc merged commit 64a35a3 into linuxkit:master Apr 9, 2018
@ijc ijc deleted the kube-v1.10 branch April 9, 2018 14:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rn rn rn approved these changes

Assignees

No one assigned

Labels

status/0-triage

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ijc @rn @GordonTheTurtle