Closed erihanse closed 1 year ago
This was reported to me the other day, but i didn't have time to look. The person reporting saw compat issues between crictl and containerd too. In general we should be attaching the latest cri-tools to the latest version of k8s.
/assign @saschagrunert cc: @kubernetes/release-engineering /milestone v1.20
Yes, right now we're not building DEB/RPM packages for cri-tools any more, because we just provide statically linked binaries for most hosts. I think kubepkg
can/should take care of that, but this is more of a long-term effort.
The most "recent" version of cri-tools
that's available on https://packages.cloud.google.com/apt/dists/kubernetes-xenial/main/binary-amd64/Packages is actually (still) 1.13.0-01.
However, the kubeadm
package even in the most recent version (1.19.4
) depends on this cri-tools
package, so it would be nice to get some update there. After all, there has been some development over there in the past 2 years (https://github.com/kubernetes-sigs/cri-tools/releases).
i think it may be time to decouple our other packages from depending on cri-tools and make applications (like kubeadm) just fail at runtime with good error messages, but this may cause the same issues we saw earlier if we apply a change to packages across all PATCH releases.
i think it may be time to decouple our other packages from depending on cri-tools and make applications (like kubeadm) just fail at runtime with good error messages, but this may cause the same issues we saw earlier if we apply a change to packages across all PATCH releases.
Hey @neolit123 are you actively working on this topic? Do you need anything from us to achieve the goal?
@saschagrunert
are you actively working on this topic?
no, because it's tricky.
Do you need anything from us to achieve the goal?
yes:
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale
.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close
.
Send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale
Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten
.
Rotten issues close after an additional 30d of inactivity.
If this issue is safe to close now please do so with /close
.
Send feedback to sig-contributor-experience at kubernetes/community. /lifecycle rotten
/remove-lifecycle rotten
To please our robot overlords
@MarkusTeufelberger this topic is no priority for SIG Release right now, hence we did not start working on it due to other ongoing topics. May I ask you if you wanna work on this topic?
So SIG release does not package the tools from SIG node since December 2018 but that's not a priority? I mean I can try to take a look, but I don't even know where to start looking: cri-tools
doesn't seem to have any deb/rpm builds in its repository, kubepkg
is written in go, not a language I'm very familiar with and I have no idea where and how this kubepkg
ultimately gets called in various CI pipelines. I was hoping it would be enough to change a 1.13.0
somewhere to a 1.21.0
, but apparently it is somehow more involved than that.
AFAIK packages are actually still built with some shell scripts
https://github.com/kubernetes/release/tree/master/hack/rapture -> https://github.com/kubernetes/release/blob/eff40a556b1f7ec298a7f376588bd8c4a16d0cf2/hack/rapture/k8s-rapture.sh#L178 https://github.com/kubernetes/release/blob/eff40a556b1f7ec298a7f376588bd8c4a16d0cf2/hack/rapture/k8s-rapture.sh#L123
-> https://github.com/kubernetes/release/blob/master/packages/rpm/docker-build.sh https://github.com/kubernetes/release/blob/master/packages/deb/jenkins.sh
however since this is essentially not versioned with kubernetes, it's tricky to safely fix this. https://github.com/kubernetes/release/issues/1913
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle stale
/lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle rotten
Still an issue, cri-tools is still ancient in the official debian repositories (https://packages.cloud.google.com/apt/dists/kubernetes-xenial/main/binary-amd64/Packages) and cri-tools does still not release alternative current deb packages (https://github.com/kubernetes-sigs/cri-tools/releases).
I still can't use proper zsh
shell completion to this day because of this... support for that was merged 2 and a half years ago.
/remove-lifecycle rotten
Indeed. Worse: the kubeadm
package hard Depends: [...] cri-tools (>= 1.13.0)
which makes deploying recent cri-tools releases from source/binary to /usr/bin/crictl
a pain, especially during upgrades.
A 1.22.0
release would fulfill this dependency too, what exactly is the issue there?
The real issue is carrying outdated cri-tools: 1.22.0
last release, 1.17.0
in the "Without a package manager" instructions, and 1.13.0
in the official repo.
(The issue I mentioned arises when trying to use updated crictl from a different package, but it is indeed a very specific problem, and could be handled via Conflicts/Replaces/Provides)
Starting some updates to the package specs here: https://github.com/kubernetes/release/pull/2295
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle stale
/lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle rotten
Still ongoing.
/remove-lifecycle rotten
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle stale
/lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
lifecycle/stale
is appliedlifecycle/stale
was applied, lifecycle/rotten
is appliedlifecycle/rotten
was applied, the issue is closedYou can:
/remove-lifecycle rotten
/close
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle rotten
I think I saw a package for a more recent version of cri-tools in the debian repo, so maybe this has been dealt with?
/remove-lifecycle rotten
I agree I think we're done with respect to the scope of this issue.
Sorry if this should've been posted in https://github.com/kubernetes-sigs/cri-tools instead, but I'll start with asking this question here.
What happened:
When I try to install kubernetes with kubeadm >1.16.x, I see cri-tools >= 1.13.0 listed as a dependency:
However, under https://github.com/kubernetes-sigs/cri-tools#current-status a compatibility matrix is listed, suggesting that Kubernetes Version >= 1.16.x has a dependency of cri-tools >= 1.16.x.
What you expected to happen:
Compatibility matrix in https://github.com/kubernetes-sigs/cri-tools#current-status is reflected in yum. For instance, cri-tools >= 1.16.x is required for Kubernetes 1.16.x. Since cri-tools is listed here: https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#kubernetes-binaries-and-package-contents, we can assume that cri-tools is set up the right way along with kubeadm when installed with deb/rpm packages.
How to reproduce it (as minimally and precisely as possible):
Run
Observe that minimum requirements are not comparable with the compatibility matrix of cri-tools.
Anything else we need to know?:
Environment:
cat /etc/os-release
): Centos 7.8uname -a
): 3.10.0-1127.19.1.el7.x86_64Thanks!