SkyDNS is the only NS for Pods with DNSPolicy=ClusterFirst #15645
Conversation
|
Labelling this PR as size/XS |
k8s-github-robot
added
the
size/XS
|
@ArtfulCoder: Can you add a brief description on why this change is required? |
|
Sure . I can copy it from on the issue I have linked already. |
|
GCE e2e test build/test passed for commit 681b8e3bc5ebb097fb9f8d5d9917cb08b362855f. |
| @@ -1190,7 +1190,7 @@ func (kl *Kubelet) getClusterDNS(pod *api.Pod) ([]string, []string, error) { | |||
| var dns, dnsSearch []string | |||
|
|
|||
| if kl.clusterDNS != nil { | |||
| dns = append([]string{kl.clusterDNS.String()}, hostDNS...) | |||
| dns = []string{kl.clusterDNS.String()} | |||
There was a problem hiding this comment.
Comment on this, please. It's less obvious now. Also comment on L1163 is now wrong. Please audit this function to make sure comments match reality
ArtfulCoder
added
the
sig/network
|
Punting this PR to 1.2 (after #15752 is addressed) |
|
Labelling this PR as size/S |
k8s-github-robot
added
size/S
|
GCE e2e test build/test passed for commit 271bcb7f9e68802fbc11bcf4f4632c864118d29b. |
ArtfulCoder
added
the
release-note
|
GCE e2e test build/test passed for commit 937fc795be772bf7b2ab1c8e95153eef26742a71. |
|
@thockin PTAL |
|
@dchen1107 since it is a kubelet change |
| @@ -1330,9 +1330,17 @@ func (kl *Kubelet) getClusterDNS(pod *api.Pod) ([]string, []string, error) { | |||
| var dns, dnsSearch []string | |||
|
|
|||
| if kl.clusterDNS != nil { | |||
| dns = append([]string{kl.clusterDNS.String()}, hostDNS...) | |||
| // for a pod with DnsClusterFirst policy, the cluster DNS server is the only nameserver configured for | |||
|
nits then LGTM |
|
status on this? |
|
will incorporate your feedback (was waiting for iptables proxy to be default) |
|
Incorporated Tim's feedback and re-added LGTM label that got removed because I update the PR with the feeback. |
|
GCE e2e test build/test passed for commit cf37606181d3ad97d40c7d8a8c8e39326fc8783e. |
ArtfulCoder
removed
the
lgtm
|
GCE e2e test build/test passed for commit 015df14. |
ArtfulCoder
added
the
lgtm
|
@k8s-bot test this Tests are more than 48 hours old. Re-running tests. |
|
GCE e2e test build/test passed for commit 015df14. |
|
@k8s-bot test this |
|
GCE e2e test build/test passed for commit 015df14. |
|
@k8s-bot test this |
|
GCE e2e test build/test passed for commit 015df14. |
|
@k8s-bot test this [submit-queue is verifying that this PR is safe to merge] |
|
GCE e2e test build/test passed for commit 015df14. |
|
Automatic merge from submit-queue |
Auto commit by PR queue bot
|
Just to give more clear context why we decided to revert it.
A bit more context.
|
|
If we're going to require to DNS to start any pod, we probably should remove an option to disable it through config. |
|
I'll throw in my objection to 'dns is required' until dns is a part of the system, instead of something on top of the system. aka I think @DirectXMan12 did some work to embed dns inside each kubelet automatically, instead of having to do something magic after the cluster is up. (not sure where it ended up). So i'm against such a new requirement as things stand today. Real world example, the kubernetes cluster where the submit queue bot runs doesn't have dns and seems to work just fine. |
|
We don't need to have DNS in the cluster. I feel this is correct. We should not allow such pods to run when there is no cluster DNS server. Sent from my iPhone
|
|
@ArtfulCoder - got it thanks (I think I just didn't understand it). @gmarek - can you please fix density test (that kubemark is running) so that all pods there use different dns policy. And then we should re-revert this PR. |
|
The thing is that we were not explicitly setting any DNSpolicy, and this change broke us. Can we make DNSDefault a default value? |
|
Tim suggested that we just fall back to DNSDefault if dns server is not On Wed, Dec 2, 2015 at 8:31 AM, Marek Grabowski notifications@github.com
|
|
Perfect - thanks. In case it is needed: #18081 |
Addresses issue : #15592
See #15592 (comment)