Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Clear append admission plugins before inserting flags to kube-apiserver #7182

Merged
merged 1 commit into from
Jul 10, 2019
Merged

Clear append admission plugins before inserting flags to kube-apiserver #7182

merged 1 commit into from
Jul 10, 2019

Conversation

zetaab
Copy link
Member

@zetaab zetaab commented Jun 24, 2019
edited
Loading

Currently when using appendAdmissionPlugins flag in kops configuration - it will also append that as flag to kube-apiserver. That will lead to result:

{"log":"error: unknown flag: --append-admission-plugins\n","stream":"stdout","time":"2019-06-24T10:21:40.176147035Z"}

(and kube-apiserver does not start)

cat /etc/kubernetes/manifests/kube-apiserver.manifest
...
  containers:
  - command:
    - /bin/sh
    - -c
    - mkfifo /tmp/pipe; (tee -a /var/log/kube-apiserver.log < /tmp/pipe & ) ; exec
      /usr/local/bin/kube-apiserver --allow-privileged=true --anonymous-auth=false
      --apiserver-count=3 --append-admission-plugins=PodSecurityPolicy

This PR will remove --append-admission-plugins flag if defined. This PR needs to be cherry-picked to release-1.14 and release-1.13

/kind bug

@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Jun 24, 2019
@k8s-ci-robot k8s-ci-robot added size/S Denotes a PR that changes 10-29 lines, ignoring generated files. kind/bug Categorizes issue or PR as related to a bug. labels Jun 24, 2019
@robinpercy
Copy link
Contributor

/test pull-kops-e2e-kubernetes-aws

@k8s-ci-robot k8s-ci-robot added size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. and removed size/S Denotes a PR that changes 10-29 lines, ignoring generated files. labels Jun 27, 2019
@zetaab
Copy link
Member Author

zetaab commented Jun 27, 2019

@robinpercy now the behaviour is what we need, and it works! It is not added to k8s apiserver manifest but the behaviour otherwise works as should.

@zetaab
Copy link
Member Author

zetaab commented Jun 27, 2019

/test pull-kops-e2e-kubernetes-aws

@robinpercy
Copy link
Contributor

@zetaab looks great. Have you been able to test to see why the e2e is failing?

@zetaab
Copy link
Member Author

zetaab commented Jul 1, 2019

@robinpercy it is timing out, like many other PRs currently

@justinsb could we do something to this e2e aws test? It is really difficult to merge anything because its failing all the time

@zetaab
Copy link
Member Author

zetaab commented Jul 1, 2019

/test pull-kops-e2e-kubernetes-aws

2 similar comments
@zetaab
Copy link
Member Author

zetaab commented Jul 1, 2019

/test pull-kops-e2e-kubernetes-aws

@robinpercy
Copy link
Contributor

/test pull-kops-e2e-kubernetes-aws

@justinsb
Copy link
Member

Thanks @zetaab

/approve
/lgtm

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Jul 10, 2019
@zetaab
Copy link
Member Author

zetaab commented Jul 10, 2019

@justinsb this needs to be backported to release-1.13 and release-1.14. Is there some easy way to do that or do I have to do PRs?

@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: justinsb, zetaab

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jul 10, 2019
@k8s-ci-robot k8s-ci-robot merged commit 4838969 into kubernetes:master Jul 10, 2019
This was referenced Jul 19, 2019
Merged
Merged
k8s-ci-robot added a commit that referenced this pull request Jul 19, 2019
@k8s-ci-robot
Merge pull request #7279 from justinsb/cherrypick_7182_release-1.13
46e8a93 
Cherry pick of #7182 onto release-1.13
k8s-ci-robot added a commit that referenced this pull request Jul 19, 2019
@k8s-ci-robot
Merge pull request #7280 from justinsb/cherrypick_7182_release-1.14
9a01cfa 
Cherry pick of #7182 onto release-1.14
k8s-ci-robot added a commit that referenced this pull request Jul 19, 2019
@k8s-ci-robot
Merge pull request #7237 from zetaab/cherrypick_7182_14
752e40b 
do not append admissionplugins, cherrypick #7182 to 1.14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@robinpercy robinpercy robinpercy left review comments

@chrisz100 chrisz100 Awaiting requested review from chrisz100

@KashifSaadat KashifSaadat Awaiting requested review from KashifSaadat

Assignees

@justinsb justinsb

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. kind/bug Categorizes issue or PR as related to a bug. lgtm "Looks good to me", indicates that a PR is ready to be merged. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@zetaab @robinpercy @justinsb @k8s-ci-robot