Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move kubelet secret and configmap manager calls to sync_Pod functions #107821

Merged
merged 1 commit into from Jan 27, 2022
Merged

Move kubelet secret and configmap manager calls to sync_Pod functions #107821

merged 1 commit into from Jan 27, 2022

Conversation

liggitt
Copy link
Member

@liggitt liggitt commented Jan 27, 2022
edited

What type of PR is this?

/kind bug

What this PR does / why we need it:

Moves the registration of secret/configmap references into pod worker functions.

xref #105204

The current registration location can make the kubelet start to make requests to fetch secrets/configmaps for pods that would be rejected by kubelet admission and never actually run.

The current unregistration location can make the kubelet forget about secrets/configmaps before a pod has completely terminated, when other subsystems may still need access.

This cuts the "not registered" errors in e2e runs by about 66%. There's still work to do to make the volume subsystem stop trying new mount attempts after the pod lifecycle has marked the pod as terminated to clean up the remaining errors, but that should be done separately by sig-storage

Fix a 1.22 regression in registering configmap and secret objects for volumes handled by the kubelet, resulting in sporadic "not registered" errors

/cc @wojtek-t @smarterclayton

@k8s-ci-robot k8s-ci-robot added release-note-none Denotes a PR that doesn't merit a release note. kind/bug Categorizes issue or PR as related to a bug. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. do-not-merge/needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. labels Jan 27, 2022
@k8s-ci-robot
Copy link
Contributor

@liggitt: This issue is currently awaiting triage.

If a SIG or subproject determines this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@k8s-ci-robot k8s-ci-robot added needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. needs-priority Indicates a PR lacks a `priority/foo` label and requires one. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. labels Jan 27, 2022
@liggitt liggitt mentioned this pull request Jan 27, 2022
Closed
@k8s-ci-robot k8s-ci-robot added area/kubelet sig/node Categorizes an issue or PR as relevant to SIG Node. approved Indicates a PR has been approved by an approver from all required OWNERS files. and removed do-not-merge/needs-sig Indicates an issue or PR lacks a `sig/foo` label and requires one. labels Jan 27, 2022
@wojtek-t
Copy link
Member

/lgtm
/approve

Thanks for fixing this!

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Jan 27, 2022
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: liggitt, wojtek-t

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot merged commit 4dba52c into kubernetes:master Jan 27, 2022
@k8s-ci-robot k8s-ci-robot added this to the v1.24 milestone Jan 27, 2022
@liggitt liggitt deleted the kubelet-secret-manager branch January 27, 2022 16:40
@liggitt liggitt mentioned this pull request Jan 27, 2022
Closed
@liggitt
Copy link
Member Author

liggitt commented Jan 28, 2022
edited

as a note, if this is picked back to any other releases, #107831 should be included as well

This was referenced Mar 16, 2022
Merged
Merged
@openshift-ci-robot openshift-ci-robot mentioned this pull request Mar 22, 2022
Merged
@ehashman ehashman mentioned this pull request Mar 24, 2022
Closed
@ehashman ehashman mentioned this pull request Apr 8, 2022
Closed
This was referenced Apr 14, 2022
Merged
Merged
This was referenced May 12, 2022
Closed
Merged
This was referenced May 25, 2022
Closed
Closed
@arrowfeng arrowfeng mentioned this pull request Jul 31, 2022
Merged
@heartlock heartlock mentioned this pull request Nov 25, 2022
Open
@k8s-ci-robot k8s-ci-robot added release-note Denotes a PR that will be considered when it comes time to generate release notes. and removed release-note-none Denotes a PR that doesn't merit a release note. labels Sep 9, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@smarterclayton smarterclayton Awaiting requested review from smarterclayton

@wojtek-t wojtek-t Awaiting requested review from wojtek-t

Assignees

@wojtek-t wojtek-t

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. area/kubelet cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. kind/bug Categorizes issue or PR as related to a bug. lgtm "Looks good to me", indicates that a PR is ready to be merged. needs-priority Indicates a PR lacks a `priority/foo` label and requires one. needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. release-note Denotes a PR that will be considered when it comes time to generate release notes. sig/node Categorizes an issue or PR as relevant to SIG Node. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
v1.24
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@liggitt @k8s-ci-robot @wojtek-t