Update kube-dns container images. #68430
Conversation
k8s-ci-robot
added
release-note-none
|
/assign @bowei |
k8s-ci-robot
added
sig/cluster-lifecycle
|
/lgtm |
k8s-ci-robot
added
lgtm
|
/ok-to-test |
k8s-ci-robot
removed
the
needs-ok-to-test
|
/retest Review the full test history for this PR. Silence the bot with an |
|
Does this need to be updated for kubeadm as well? |
|
/milestone v1.12 |
|
/sig network |
k8s-ci-robot
added
the
sig/network
for ref: i see the multi arch images are already up at gcr, but there are no manifest lists in place. also this PR only bumps for amd64: |
|
@neolit123 if i remember right since CoreDNS feature was marked GA and kube-dns was kinda deprecated ... the build harness was not updated to generate manifests: @mkumatag can you please confirm? |
|
kube-dns is not deprecated yet. |
|
@bowei sorry i used wrong words :) |
you are right! kube-dns is not yet multi-arched. |
|
kube-dns not being multi-arch can break for a user that wants to switch from core-dns to kube-dns on a cluster that is not only amd64 via the CoreDNS feature gate. two options:
|
|
What does multi-arched mean? We build kube-dns for amd64 arm arm64 ppc64le s390x. |
|
@prameshj @MrHohn Here's a note from @neolit123 on slack neolit123 [9:11 PM] https://console.cloud.google.com/gcr/images/google-containers/GLOBAL/k8s-dns-kube-dns?gcrImageListsize=50 |
|
@dims I think we were confused about how the multi-arched images work. https://pantheon.corp.google.com/gcr/images/google-containers/GLOBAL/k8s-dns-kube-dns contains:
Is that not enough? Do we need to push images to |
|
@MrHohn those are correct. |
|
Okay, seems like kube-apiserver pushes the same image to both --- kube-apiserver and kube-apiserver-{arch}. We will do the same for kube-dns then. |
|
thanks @MrHohn yes, all the individual {arch} images and the manifest (without the arch) |
|
/retest Review the full test history for this PR. Silence the bot with an |
|
@dims Do we need the individual {arch} images to support docker pull commands like k8s.gcr.io/k8s-dns-kube-dns-amd64:1.14.12 ? |
k8s-ci-robot
added
release-note
@dims @neolit123 All the individual {arch} images should have been pushed now. e.g. https://pantheon.corp.google.com/gcr/images/google-containers/GLOBAL/k8s-dns-kube-dns-amd64 |
|
@prameshj we are in that weird zone where we are getting things to work but not really told everyone to switch over to manifests. So for now since there are many tools other than kubeadm, we should just publish what we used to publish before AND the new manifest. when we get to v1.13 we can make a stronger statement around requiring manifests all the time (may be). Yea, coredns was ahead of us if i remember right. So let's follow what i outlined above. ( cc @mkumatag ) |
|
@MrHohn |
That is unfortunately :/ Working with @Random-Liu now to repush the images. |
|
Thanks @Random-Liu @MrHohn ! |
|
@Random-Liu thanks for the heads up on the issue, indeed! |
|
@neolit123 Thanks a lot! |
we already have a check for making sure we are using docker 18.06 version - https://github.com/kubernetes/kubernetes/blob/master/test/images/image-util.sh#L100 |
|
More updates:
Likely we will need another PR to bump kube-dns to |
there was a similar discussion for etcd and it was decided to bump revisions:
sounds good. |
Please get that submitted ASAP today!!! |
|
Sent #68900. |
What this PR does / why we need it:
This fixes an issue where SRV records were incorrectly being compressed. Go 1.11 added checks to reject compressed SRV records https://golang.org/cl/100055
kubeDNS image needs to be updated in order for those clients to work.
I verified manually that the new kubedns version works with Go 1.11 clients
Which issue(s) this PR fixes (optional, in
fixes #<issue number>(, fixes #<issue_number>, ...)format, will close the issue(s) when PR gets merged):Fixes #
Special notes for your reviewer:
Release note: