cc @mikedanese

Ya I noticed this one time and it annoyed me. I think you mean --kubeconfig and not --config?

The problem with fixing this is that len(--api-servers) == 0 is overloaded to mean run kubelet in standalone mode. That's not the case if apiservers were specified in the kubeconfig. cc @kubernetes/goog-node

I just noticed this in #29216 and I agree - clients of the API should use
kubeconfig if they are part of our codebase.

On Fri, Aug 12, 2016 at 1:47 PM, Mike Danese notifications@github.com
wrote:

Ya I noticed this one time and it annoyed me. I think you mean
--kubeconfig and not --config?

—
You are receiving this because you are on a team that was mentioned.
Reply to this email directly, view it on GitHub
#30515 (comment),
or mute the thread
https://github.com/notifications/unsubscribe-auth/ABG_p_v807Sy_3oBtlAQJz4PYuNteCaQks5qfLGlgaJpZM4JjSJH
.

I guess one thing we could do is add a --standalone flag, and if the flag is not provided we use the existing behavior of 0-len --api-servers, but if it is provided, --api-servers is ignored. So if you want to just use the URLs from the config file, you can explicitly pass --standalone=false. And eventually we move to deprecating --api-servers, setting --standalone=false by default, and always using URLs from the config file unless --standalone=true.

Certainly we need a new flag. It seem like adding --standalone would sacrifice backwards compatibility, if this is a popular feature... I've briefly thought of something like --wait-for-kubeconfig, but may be we don't need a flag for it, and it could be just the new behaviour. What do people think about waiting for the kubeconfig file? Of course, there is one downside that Config type only allows you to set one Server, but it'd be reasonable to leave that outside of the scope, so we can just get the basic non-HA bootstrap UX implemented.

Going to try to take a look at fixing this.

Does it sound ok to do the following:

• if --kubeconfig specified:
  • if it doesn't yet exist wait for it
  • error out if --api-servers was also defined
  • change assumption for standalone behavior to: if len api-servers == 0 and --kubeconfig not specified

@dgoodwin please note that there is already code which aims to fix this at #30616 – it might be better if you could review that code rather than writing new code?

Or maybe you can explain how the proposal you just made is better than #30616? Thanks!

My mistake, thought we needed a fix here. Looking now.

@dgoodwin I think what you are suggesting is cleaner then adding a new flag, but it's mostly backwards compatibility that I was trying to address in #30616. I'd be happy to break this rather odd behaviour, if folks agree to do so.

Ok, to summarize:

• We cannot break the backwards compatibility of len(apiservers) == 0 not meaning standalone. That means we cannot just start reading kubeconfig by itself for apiserver, or failing on error
  • However, in the future, we should introduce --standalone or similar to make that behavior explicit.
• We never reload kubeclient, so a client that starts with kubeconfig specified but is broken will never reload (and users likely don't expect or want that behavior)
• We default KubeConfig in kubelet to a value, but users may have simply copied that default behavior onto a flag and expect the behavior.

To fix this, we need to introduce a new flag. I would generally prefer we crash-loop with a very succinct and clean message, because we use that across the project consistently, and it is predictable and consistent with other tools in the space.

Here are some options:

• --require-kubeconfig - if specified, we error out on kubeconfig. Would be set by cluster bootstrap. Would not require changes to kubeconfig. The vast majority of users want this flag.
• --apiserver-kubeconfig - overrides --kubeconfig if set, and if set, requires the kubeconfig to exist. Deprecate --kubeconfig and remove in 1.5 or later.

Either way, we'd also want to have the error checking try to print a nice succinct error. I lean slightly towards the latter flag because if the vast majority of users want a specific behavior (error out if my config is wrong) then having to specify two flags means users will forget to specify the second flag, which means they will silently not get the behavior the expect. If we instead teach them to use the new flag, they always get the behavior they expect.

I think I prefer --apiserver-kubeconfig

Thanks @smarterclayton! So to be clear --apiserver-kubeconfig means "read the API server information from the kubeconfig file, exiting cleanly if the kubeconfig file doesn't exist"? That SGTM.

Yes I think so.

Bumping to p1 because this blocks lifecycle having a path forward.

Since I reviewed @erictune's original code here and I consider this my fault I'm opening a PR.

@mtaufen this probably intersects with your changes - was that slated for merge today?

Are you planning on doing this for all components?

No, just for Kubelet. Controller manager and scheduler already exit if the kube config is invalid (can double check the others)

Kubelet is the only one that must remain backwards compatible.

Can we just action-required release note and kubernetes-announce, and actually fix this? Kubelet should handle kubeconfig like all others components, including a continuous command line flag API. The fact that this is not the case is a bug. I imagine that this behavior is little traveled and this is gross.

Controller manager and scheduler already exit if the kube config is invalid

There is no invalid. Using the default loader you get a http://localhost:8080 kubeconfig

I thought we fixed it so that the NonInteractive did not have that value? That's terrible if so.

Very useful...

Yes, I recall there was a bit of mixed behaviour, but couldn't remember what it was exactly. Adding a --poll-kubeconfig sort of flag to all components would be nice, IMO... Or may be we could treat a empty file in special way or something. Alternatively, perhaps on systemd we could use ConditionPathExists (as @dgoodwin suggested) in kubelet.service and add kubelet.path to watch for it and kick kubelet.service when it gets created. Let's make sure to discuss later, once we get a fix to this LGTM'ed.

Here's the first draft:

$ kubelet --require-kubeconfig
failed to run Kubelet: invalid kubeconfig: stat /var/lib/kubelet/kubeconfig: no such file or directory

If people would like a better message for the "hot-loop" case please let me know

LGTM @smarterclayton

@smarterclayton I have higher priorities today, so if #30798 merges first no worries. I'll rebase in the morning if necessary. Don't block on me.