kubeadm: backup kubelet config for "upgrade node" and "upgrade apply" #114695
Conversation
k8s-ci-robot
added
release-note
k8s-ci-robot
added
area/kubeadm
sig/cluster-lifecycle
|
/hold /cc @neolit123 @pacoxu |
k8s-ci-robot
added
the
do-not-merge/hold
chendave
force-pushed
the
fix_cross_move
branch
3 times, most recently
from
4a2a5ed to
f773f74
Compare
k8s-ci-robot
added
size/L
/hold cancel |
k8s-ci-robot
removed
the
do-not-merge/hold
chendave
force-pushed
the
fix_cross_move
branch
3 times, most recently
from
0ad6b18 to
cc42ad6
Compare
|
/test pull-kubernetes-e2e-gce |
|
I am working on some old PR follow-ups this week and will update some KEPs in this week and next. I will get back to this later this week or next then. |
|
need a rebase since #114719 was merged. |
| // Write the configuration for the kubelet down to disk and print the generated manifests instead if dry-running. | ||
| // If not dry-running, the kubelet config file will be backed up to /etc/kubernetes/tmp/ dir, so that it could be | ||
| // recovered if there is anything goes wrong. | ||
| upgrade.WriteKubeletConfigFiles(cfg, data.PatchesDir(), dryRun, data.OutputWriter()) |
There was a problem hiding this comment.
Should we handle the return err here?
err := upgrade.WriteKubeletConfigFiles(cfg, data.PatchesDir(), dryRun, data.OutputWriter())
This addresses the TODO item so that the old kubelet config file could be recovered if something goes wrong. Signed-off-by: Dave Chen <[email protected]> Co-authored-by: Paco Xu <[email protected]>
The root cause for that error is because `rename` doesn't work
across different mount points.
The kubelet config file and back up directory are mounted to
different file system in kinder environment.
```
df /var/lib/kubelet/config.yaml | tail -n1 | awk '{print $1}'
/dev/sda2
df /etc/kubernetes/tmp/kubeadm-kubelet-configxxx | tail -n1 | awk '{print $1}'
overlay
```
Call `cp` instead of `rename` to back up the kubelet file would fix
that issue.
Signed-off-by: Dave Chen <[email protected]>
chendave
force-pushed
the
fix_cross_move
branch
from
4fae805 to
f6b04fe
Compare
The error was ingored which means if anything wrong from `PrintDryRunFiles`, it was sliently ignored. Signed-off-by: Dave Chen <[email protected]>
chendave
force-pushed
the
fix_cross_move
branch
from
f6b04fe to
484d0d5
Compare
|
@pacoxu pls see https://github.com/kubernetes/kubernetes/compare/f6b04fe5d4e168067d978440af4464134f57caa4..484d0d542e3adbcbda08a48236daabcfe1649504 for the diff. added the check for privileged user so that the test can only run with the root user. Your comments leads me to think about the regression we have: #114824 👍 |
Back up kubelet config file for `kubeadm upgrade apply`, some code refactoring is done to de-dup some redundant code logic. Signed-off-by: Dave Chen <[email protected]>
chendave
force-pushed
the
fix_cross_move
branch
from
484d0d5 to
5127cbf
Compare
|
/priority important-soon
I am not sure if this needs to be fixed or not, and is this the best practice to skip it like this? Overall |
k8s-ci-robot
added
priority/important-soon
|
LGTM label has been added. Git tree hash: 2bb78489bb0588d545d9c542de3d6353e3440aeb
|
my understanding is that upgrade needs the user to be root, so it is non-sense to run those test if the user is not root, besides, I was thinking to create the dir which every user has the permission to write on all the arches & os, but I don't think its possible. |
|
/hold please test with kinder and the related e2e test workflow before merging / removing hold. |
k8s-ci-robot
added
the
do-not-merge/hold
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: chendave, neolit123 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
|
actually i realize it's not so simple to test uncommited code with kinder....that is because the tool is mostly designed for testing artifacts that are already build from k/k commits in CI. alternatively just remove the hold watch the e2e test signal in the next 2 days and revert / update if needed: |
|
@neolit123 I tested it locally, and here is the link of the result I pasted in the desc,
|
|
/hold cancel let's see if the CI job is happy. |
k8s-ci-robot
removed
the
do-not-merge/hold
|
/retest |
cherry pick the previous commit which is reverted by revert feature to backup kubelet config for "upgrade node", co-authored by @pacoxu
fix
invalid cross-device linkerror, for the issue first reported here fix failing dryrun e2e job kubeadm#2796 and the journal from here: https://storage.googleapis.com/kubernetes-jenkins/logs/ci-kubernetes-e2e-kubeadm-kinder-patches-latest/1605265548596219904/build-log.txtThe root cause for that error is because
renamedoesn't work across different mount points.The kubelet config file and back up directory are mounted to different file system in kinder environment.
Call
cpinstead ofrenameto back up the kubelet file would fix that issue.include the err got from
PrintDryRunFileThe error was ingored which means if anything wrong from
PrintDryRunFiles, it was sliently ignored.backup kubelet config file for
upgrade applyBackup kubelet config file for
kubeadm upgrade apply, some code refactoring is done to de-dup some redundant code logic.test result with kinder: https://gist.github.com/chendave/64f7825cf7faa7f30774fe6c48053c21
/kind feature
What type of PR is this?
What this PR does / why we need it:
Which issue(s) this PR fixes:
Fixes #
Special notes for your reviewer:
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: