Configue kubelet.service to avoid crashlooping before config is present #1352
Conversation
k8s-ci-robot
added
release-note
|
Welcome @sysrich! |
|
Hi @sysrich. Thanks for your PR. I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
k8s-ci-robot
added
the
size/XS
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: sysrich The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
sig/release
|
thanks for the PR @sysrich one issue with this change is that it pins the kubelet config to a path, so consumer of the kubelet service outside of kubeadm usage will get a service that never starts unless they write that particular path. perhaps it would be better to simply not start the service post installation and require users (or kubeadm) to start it manually. i'm sure there is a way to do that with systemd. /hold for review |
k8s-ci-robot
added
sig/cluster-lifecycle
k8s-ci-robot
added
priority/important-longterm
|
/kind feature |
k8s-ci-robot
added
kind/feature
|
please have a look at kubernetes/kubeadm#2178 which proposes an alternative route. EDIT: although i've just added some caveats, so this might actually be the better route. |
|
@kubernetes/sig-release hello, i have a question: if we make a breaking change with an action-required, in say a kubelet DEB package, does this mean that this change will land in all the new PATCH releases or only in the latest MINOR release? i remember we used to have some conditional Go code that was able to control some aspects of what lands in what version, which was not ideal and seemed as a workaround for the lack of branches in k/release. depending on the response to the above question this PR might be better than the proposal in kubernetes/kubeadm#2178 |
|
I don't think we have a strong documented policy or enforcing on this. But given that we support upgrades from 1.X to 1.(X+1), if there was some migration/mitigation code added to the (X+1) branch in a particular patch release, it should need to be conditionally active for that and all subsequent patch releases on that branch. For example we have 1.17.6 and a user of that can upgrade to 1.18.3. If a bug is mitigated in 1.18.4 a user upgrading from 1.17.6 should get the mitigation. If we subsequently release 1.18.5, we can't require this user to upgrade from 1.17.6 to 1.18.4 first and only then 1.18.5. Have I understood the question correctly? |
|
@tpepper I think @neolit123 is asking about mechanically if the tooling here can gate what versions this change lands in. @neolit123 I'm pretty sure changes here are going to be picked up in all future releases on all versions IIRC ... Given that, I agree that this change is desirable, but currently somewhat problematic. To circle back to Tim's comment ... as a matter of policy I think for a change like this ideally we would put it into the next minor release forward only, and have an "action required" release note. This brings me back to kubernetes/kubernetes#88832 ... |
|
Really this file should be in the main repo, both so it can be version controlled with the sources & release branching and so that people not using an official release have a reference systemd unit. This has forced pretty much all cluster lifecycle projects to fork the systemd unit into their own repo instead of just writing drop-ins with their customizations, which also means we don't even test this file ... |
|
Location of packaging automation and whether it should be forked or have conditional logic has been a protracted discussion, and in the meantime that is in k/release not forked and occasionally with conditional logic. But 100% agree: packages' content should be coming from non-k/release repos (eg: k/k, k/kubelet, k/kubeadm). Systemd unit files are package content. |
|
Back on the topic of the change, does this actually work as intended? For non-kubeadm users this is probably another issue then, even if they generate the file at the standard path, their kubelet may never start? |
|
According to systemd documentation (see here) this would only cause the kubelet service to be skipped. It won't enter crash loop state and it won't be marked as "failed". However, no file watching would be performed. Hence, the service must be restarted manually once the condition is satisfied for it to be reevaluated. With that in mind, this highlights that there are two types of expectations WRT the kubelet service:
kubeadm, for instance, depends only on 1 to be true, but does not require 2 (since kubeadm restarts the service as needed). Hence, this change won't break kubeadm. For me, crash looping has always been an odd choice. I am not aware of any Linux distro that packages daemons as automatically enabled services that are missing config and therefore crash looping. With that in mind and since this change can already break part of the users, I would advocate on making things more clean by simply disabling the service at install time. |
since both kubeadm and kubelet are in k/k we should have the specs in there for the time being. this was discussed in kubernetes/kubernetes#71677 the (less desired) alternative was to start branching k/release the same way as k/k: |
|
crashlooping aside, something to everyone's attention is that the kubelet is removing some/most of it's flags that are present in the 10-kubeadm file in the near future. if such a kubelet change lands in e.g. k8s 1.21, we must release the change to 10-kubeadm only for version 1.21 of the packages. |
Changes to the spec templates with respect to different Kubernetes versions can be applied by the logic inside Should we only apply the changes in this PR if Kubernetes gets installed via kubeadm? Can’t users specify the kubelet configuration manually? Can we either:
|
|
/ok-to-test |
k8s-ci-robot
added
ok-to-test
this is what we used to do before kubepkg. arguably, it feels like a workaround and having the specs branched per k8s release is more sane.
the change in this PR is generally not desirable for both kubeadm and non-kubeadm users. |
|
I'd be fine with having it disabled by default. Is there an issue/PR already in progress somewhere which I have failed to find? |
|
issue is tracked here for the time being kubernetes/kubeadm#2178 |
|
As discussed some time ago personally with @sysrich, let’s close this for now and look forward for the long term solution. /close |
|
@saschagrunert: Closed this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
is an alternative plan being actively pursued?
… |
|
added a comment in kubernetes/kubeadm#2178 |
What type of PR is this?
/kind bug
What this PR does / why we need it:
The current documentation makes a number of references to how kubelet will be crashlooping until it is configured. eg https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/
This has certainly caused some confusion for users who notice the errors also (eg. kubernetes/kubernetes#83936)
This is unnecessary as the kubelet.service can be configured to only attempt to start when there is a config.yaml provided. This PR introduces that requirement
Which issue(s) this PR fixes:
Fixes kubernetes/kubernetes#83936
Special notes for your reviewer:
None
Does this PR introduce a user-facing change?