Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rev versions of containerd and Kubernetes #576

Merged
merged 7 commits into from
Feb 14, 2019
Merged

Rev versions of containerd and Kubernetes #576

merged 7 commits into from
Feb 14, 2019

Conversation

detiber
Copy link
Member

@detiber detiber commented Feb 14, 2019
edited
Loading

What this PR does / why we need it:

  • Update k8s to latest patch release
  • Update containerd for CVE-2019-5736

Which issue(s) this PR fixes (optional, in fixes #<issue number>(, fixes #<issue_number>, ...) format, will close the issue(s) when PR gets merged):
Fixes #570

Release note:

- Update default AMI and examples for Kubernetes v1.13.1
- Update default AMI for CVE-2019-5736

Outstanding TODOs for this PR:

  • Update sha256sum for containerd once v1.2.4 is available in the GCS bucket
  • Test packer images
  • Deploy new packer images to the wardroom account
  • Update default AMI list for new packer images
  • Test deployment of a v1.13.3 cluster using new packer images.

@k8s-ci-robot k8s-ci-robot added do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. labels Feb 14, 2019
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: detiber

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added approved Indicates a PR has been approved by an approver from all required OWNERS files. size/S Denotes a PR that changes 10-29 lines, ignoring generated files. labels Feb 14, 2019
sfzylad
sfzylad reviewed Feb 14, 2019
View reviewed changes
build/amis/packer/packer.json
@@ -3,7 +3,7 @@
"aws_access_key": "",
"aws_secret_key": "",
"build_timestamp": "{{timestamp}}",
"kubernetes_version": "1.13.2-00",
"kubernetes_version": "1.13.3-00",
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same here. It may be worth testing if the packages we want to install are there.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think a Goss test is needed here because the Ansible playbook will fail if the specified version of the package is not installed.

@k8s-ci-robot k8s-ci-robot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed size/S Denotes a PR that changes 10-29 lines, ignoring generated files. labels Feb 14, 2019
chuckha
chuckha reviewed Feb 14, 2019
View reviewed changes
Copy link
Contributor

@chuckha chuckha left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks great , just need to bump versions in this file

https://github.com/kubernetes-sigs/cluster-api-provider-aws/blob/master/cmd/clusterctl/examples/aws/machines.yaml.template#L13

EDIT: JUST KDDING, YOU ALREADY DID THAT!

detiber and others added 7 commits February 14, 2019 16:42
@detiber
Rev versions of containerd and Kubernetes
a351cd5
@randomvariable @detiber
Fix incorrect packer-goss instructions
abdabf7 
Signed-off-by: Naadir Jeewa <[email protected]>
Signed-off-by: Naadir Jeewa <[email protected]>
@randomvariable @detiber
packer: Simplify goss, add containerd tests
d569edf 
Signed-off-by: Naadir Jeewa <[email protected]>
Signed-off-by: Naadir Jeewa <[email protected]>
@randomvariable @detiber
Packer: Update sample base AMIs
97b0fbd 
Signed-off-by: Naadir Jeewa <[email protected]>
Signed-off-by: Naadir Jeewa <[email protected]>
@randomvariable @detiber
ansible: Enable pipelining
8095323 
Signed-off-by: Naadir Jeewa <[email protected]>
Signed-off-by: Naadir Jeewa <[email protected]>
@randomvariable @detiber
packer: Run goss with sudo
b743194 
Signed-off-by: Naadir Jeewa <[email protected]>
Signed-off-by: Naadir Jeewa <[email protected]>
@detiber
temp
6e9348d
@detiber detiber changed the title [WIP] Rev versions of containerd and Kubernetes Rev versions of containerd and Kubernetes Feb 14, 2019
@k8s-ci-robot k8s-ci-robot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Feb 14, 2019
@detiber
Copy link
Member Author

detiber commented Feb 14, 2019

@chuckha this should be good to go now.

@randomvariable randomvariable mentioned this pull request Feb 14, 2019
Merged
vincepri
vincepri approved these changes Feb 14, 2019
View reviewed changes
Copy link
Member

@vincepri vincepri left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Feb 14, 2019
@k8s-ci-robot k8s-ci-robot merged commit 699b324 into kubernetes-sigs:master Feb 14, 2019
@detiber detiber deleted the revContainerd branch April 2, 2019 17:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sfzylad sfzylad sfzylad left review comments

@randomvariable randomvariable randomvariable left review comments

@chuckha chuckha chuckha left review comments

@vincepri vincepri vincepri approved these changes

@ingvagabund ingvagabund Awaiting requested review from ingvagabund

Assignees

@vincepri vincepri

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Update version of containerd used in AMIs
6 participants
@detiber @k8s-ci-robot @chuckha @randomvariable @vincepri @sfzylad