Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set default value for disable_shared_pid #1710

Merged
merged 1 commit into from
Oct 11, 2017
Merged

Set default value for disable_shared_pid #1710

merged 1 commit into from
Oct 11, 2017

Conversation

hyunsun
Copy link
Contributor

@hyunsun hyunsun commented Sep 27, 2017
edited
Loading

Sharing PID namespace for Docker is disabled by default only in
Kubernetes 1.7. Explicitily enabling it by default could help reduce
unexpected results when upgrading to or downgrading from 1.7.

@k8s-ci-robot
Copy link
Contributor

Thanks for your pull request. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

📝 Please follow instructions at https://github.com/kubernetes/kubernetes/wiki/CLA-FAQ to sign the CLA.

It may take a couple minutes for the CLA signature to be fully registered; after that, please reply here with a new comment and we'll verify. Thanks.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@k8s-ci-robot k8s-ci-robot added cncf-cla: no Indicates the PR's author has not signed the CNCF CLA. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Sep 27, 2017
@hyunsun hyunsun closed this Sep 27, 2017
@hyunsun hyunsun reopened this Sep 27, 2017
@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. and removed cncf-cla: no Indicates the PR's author has not signed the CNCF CLA. labels Sep 27, 2017
mattymo
mattymo reviewed Sep 27, 2017
View reviewed changes
roles/kubernetes/node/templates/kubelet.standard.env.j2
@@ -14,6 +14,7 @@ KUBELET_HOSTNAME="--hostname-override={{ kube_override_hostname }}"
--pod-infra-container-image={{ pod_infra_image_repo }}:{{ pod_infra_image_tag }} \
--kube-reserved cpu={{ kubelet_cpu_limit }},memory={{ kubelet_memory_limit|regex_replace('Mi', 'M') }} \
--node-status-update-frequency={{ kubelet_status_update_frequency }} \
--docker-disable-shared-pid={{ kubelet_disable_shared_pid }} \
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please also update kubeadm env file as well in the same directory.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sure, done.

@bradbeam
Copy link
Contributor

This change is being reverted with kubernetes 1.8 kubernetes/kubernetes#51634 . I'm not sure on the appropriate way to handle this setting.

@hyunsun
Copy link
Contributor Author

hyunsun commented Oct 10, 2017

Yeah..pid namespace sharing is enabled by default until 1.6 and disabled in 1.7, and then enabled again in 1.8. Actually, we wasted one day for finding this when we upgraded from 1.6 to 1.7. This patch will keep the configuration enabled for others who don't care about it.

@hyunsun
Set default value for disable_shared_pid
12d574d 
PID namespace sharing is disabled only in Kubernetes 1.7.
Explicitily enabling it by default could help reduce unexpected
results when upgrading to or downgrading from 1.7.
@mattymo
Copy link
Contributor

mattymo commented Oct 11, 2017

ci check this

@mattymo mattymo merged commit adf575b into kubernetes-sigs:master Oct 11, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mattymo mattymo mattymo approved these changes

Assignees
No one assigned
Labels
cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@hyunsun @k8s-ci-robot @bradbeam @mattymo