Proposal: Dramatically Simplify Kubernetes Cluster Creation #30360
Conversation
k8s-github-robot
added
kind/design
bgrant0607
added
release-note-none
|
|
||
| ``` | ||
| master# kubeadm init master | ||
| Error: socat not installed. Unable to proceed. |
There was a problem hiding this comment.
Huh? What needs socat and why?
There was a problem hiding this comment.
It was just an example: see #26093 for some dependencies that folks have discovered. A better example might be a kernel which doesn't support the required cgroups settings.
There was a problem hiding this comment.
Why does this tool care about whether the kubelet has what it needs? In the case of CoreOS we run kubelet in a container and so this check wouldn't work.
There was a problem hiding this comment.
It's trying to help the user with early detection of issues on platforms where the kubelet runs on the host. I agree this may not work so well if the user is deploying containerize kubelets, so we'd at least need a way to turn it off.
| ### Add-node | ||
|
|
||
| *Same as Install – "on node machines".* | ||
|
|
There was a problem hiding this comment.
In general, I like this idea. But, it seems to gloss over how networking will be handled/configured. Would you be installing an overlay automatically or will there be some other solution?
There was a problem hiding this comment.
I think the idea is that pod networks should be installed as add-ons, that is, with kubectl apply -f. See above section "Install-addons". Does that answer your question?
There was a problem hiding this comment.
Yes, the idea is that networking is configured as an add-on. We should make that clear in the proposal.
|
I don't recall significant support for the gossip path. Did I misinterpret the call? |
|
We need a way to provide the "discovery" payload (api url and ca.crt) to initiate this process. The most uncontroversial way to do this is they way we do it now: manually. We can improve on that mechanism incrementally, but IMO this proposal his orthogonal and higher priority than implementing more advanced discovery processes. Even if I have to bother with getting a list of apiservers and a ca.crt onto a node, this is a HUGE improvement over what we have today. |
|
|
||
| ## Top-down view: UX for Phase I items | ||
|
|
||
| We will introduce a new binary, kubeadm, which ships with the Kubernetes OS packages (and binary tarballs, for OSes without package managers). |
There was a problem hiding this comment.
I think we can put this as a subcommand of kubelet. What do people think of that?
$ kubelet cluster join node
$ kubelet cluster init master
$ # or
$ kubelet join node
$ kubelet init master
There was a problem hiding this comment.
Why would we want to do that? To save the user from downloading another binary?
There was a problem hiding this comment.
I'm torn. The engineer in me says these are different things, so different names make sense. But this is all about streamlining and reducing moving parts, so I think less is more here.
There was a problem hiding this comment.
maybe kubelet admin init master to namespace a little deeper without producing multiple CLIs?
There was a problem hiding this comment.
From a developer experience perspective, I would strongly encourage us not to make kubelet the top-level command that the user interacts with (even with subcommands). In anything like its current form, kubelet should be plumbing, not porcelain IMO. It's highly likely that developers/users will see the docs/blog post/whatever instructions that mention kubelet and then type kubelet --help. They need to get less than a page of clear instructions on how to get started. What they get currently is anything-but. That --help text is our canvas. Let's start from a clean one.
The reason I don't think we can "clean" the kubelet "canvas" as that it would break compatibility with lots of things that already assume things about how kubelet works and which arguments it takes. We don't want to break everyone's existing kubernetes-installation systems when we introduce this new happy path.
We previously agreed in the SIG that the happy path includes "download OS packages" for most distros. Is there an issue with the OS packages including two binaries that I don't see?
There was a problem hiding this comment.
Thanks for the input guys. Let's start with the simplest thing, a new kubeadm binary. I'm not averse to git-style subcommands, I just don't think we need them right now to solve the problem SIG-cluster-lifecycle is trying to solve.
There was a problem hiding this comment.
We can always deprecate kubeadm if we decide otherwise. I'm partial to
kubelet init but I understand the concerns regarding it. A new binary name
is a good place to experiment.
On Fri, Aug 12, 2016 at 4:14 AM, lukemarsden notifications@github.com
wrote:
In docs/proposals/dramatically-simplify-cluster-creation.md
#30360 (comment)
:+* Add-node: I can add another computer to the cluster.
+
+* Secure: As an attacker with (presumed) control of the network, I cannot add malicious nodes I control to the cluster created by the user. I also cannot remotely control the cluster.
+
+### Phase II
+
+In time for Kubernetes 1.5:
+Everything from Phase I as beta/stable feature, everything else below as beta feature in Kubernetes 1.5.
+
+* Upgrade: Later, when Kubernetes 1.4.1 or any newer release is published, I can upgrade to it by typing one other command on each computer.
+
+* HA: If one of the computers in the cluster fails, the cluster carries on working. I can find out how to replace the failed computer, including if the computer was one of the masters.
+
+## Top-down view: UX for Phase I items
+
+We will introduce a new binary, kubeadm, which ships with the Kubernetes OS packages (and binary tarballs, for OSes without package managers).Let's start with the simplest thing, a new kubeadm binary. I'm not averse
to git-style subcommands, I just don't think we need them right now to
solve the problem SIG-cluster-lifecycle is trying to solve.—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
https://github.com/kubernetes/kubernetes/pull/30360/files/7f3458c36e81ee2a5511bdef1bc96e76e05ccdc2#r74555184,
or mute the thread
https://github.com/notifications/unsubscribe-auth/ABG_p1Fpnd9677bRaOL9n4FhBN0xtgsJks5qfCtvgaJpZM4JhIGl
.
There was a problem hiding this comment.
FYI docker daemon is no longer a thing, as of 1.12 there is a separate dockerd binary...
There was a problem hiding this comment.
Is there a reason we are suggesting kubeadm instead of the simpler kube?
There was a problem hiding this comment.
Yeah, @jbeda was concerned that kube is possibly being taken by the hyperkube binary. It probably isn't. But we didn't want to risk it.
|
Overall this looks fantastic. Has @kelseyhightower been weighing in on this to keep us honest? |
|
Where does kube-proxy come in? As an addon? I'm most concerned about the inter-relationships of addons. You can't really use DNS without some form of service VIP. The network plugins in use have some impact on kube-proxy (or replacements thereof) and vice-versa |
|
@philips it works :) |
|
This needs a squash, then I will lgtm |
| Example usage: | ||
|
|
||
| Create a two-machine cluster with one master (which controls the cluster), | ||
| and one node (where workloads, like pods and containers run). |
There was a problem hiding this comment.
hmmmm if building a universal bootstrapper, can we start moving away from the term master ? one concrete reason: for HA dont we worry about what a "master" is w/ the scheduler and apiserver and so on being possibly segregated,moving around over time ? and also, we know there may be many apiservers....
|
Can one of the admins verify that this patch is reasonable to test? If so, please reply "ok to test". This message will repeat several times in short succession due to jenkinsci/ghprb-plugin#292. Sorry. |
|
I think this proposal is missing the use-case where 1 single machine fulfills both roles: master and node? One usecase for this would be a developer running a single-node cluster locally. Another usecase would be for small clusters where you want to utilize the free resources on the master-node. Maybe this could be done with a command like Another thing that would be really nice, is to be able to define (and update?) roles (master, node) at runtime. Anyway this is really huge, thank you so much for your effort! |
|
Would this just be as simple as running a "kubeadm join node" on the same system after initializing it as a master? I like the concept of roles though, hope we can explore that once we get a little further along so we can do granular operations like adding a new API server or perhaps an etcd node. |
|
The way I see it is more like 'kuneadm init --also-node', we have On Tue, 30 Aug 2016, 13:21 Devan Goodwin, notifications@github.com wrote:
|
|
Review status: 0 of 1 files reviewed at latest revision, 15 unresolved discussions, some commit checks failed. docs/proposals/dramatically-simplify-cluster-creation.md, line 91 [r4] (raw file):
+1 to not use "master" and do not confuse people immediately start thinking about A/P, active/standby, master/slave. Could it be just? node1# kubeadm init cluster (or seed or member or apiserver thing) Comments from Reviewable |
|
@bogdando while working on the initial prototype (#31221), we have ended-up with |
|
LGTM, thank you for update |
|
|
||
| * *Install*: As a potential Kubernetes user, I can deploy a Kubernetes 1.4 cluster on a handful of computers running Linux and Docker by typing two commands on each of those computers. The process is so simple that it becomes obvious to me how to easily automate it if I so wish. | ||
|
|
||
| * *Pre-flight check*: If any of the computers don't have working dependencies installed (e.g. bad version of Docker, too-old Linux kernel), I am informed early on and given clear instructions on how to fix it so that I can keep trying until it works. |
There was a problem hiding this comment.
Probably should cross like the @kubernetes/sig-node feature here.
|
We have landed |
|
We still have #30707 to talk about, and I think that is of more value, and can be turned into a design document. |
|
Yeah, I'm going to close this as I think the value was extracted during discussion. I'll probably base a plan document for 1.5 on the "Phase II" sections here, amended, unless someone else gets to that first. LMK if anyone disagrees with closing this PR. |
|
@lukemarsden Please let's get this merged. These docs are important for posterity. Just squash and run ./hack/update-mungedocs.sh and this should be good to merge. |
|
Jenkins verification failed for commit a692dea. Full PR test history. The magic incantation to run this job again is |
|
Jenkins GKE smoke e2e failed for commit a692dea. Full PR test history. The magic incantation to run this job again is |
|
This merged in #33673 |
|
thanks, @mikedanese! |
…ally-simplify-cluster-creation Automatic merge from submit-queue Proposal: Dramatically Simplify Kubernetes Cluster Creation repost of kubernetes#30360 closes kubernetes#30360
Promoted from draft at https://docs.google.com/document/d/1BO6JB16L27XFN-pmnFP_otvKW2cFxE-ysehI4ZJnYBo/edit
This change is