kemko/nomad
1
0
Fork 0
mirror of https://github.com/kemko/nomad.git synced 2026-01-01 16:05:42 +03:00
Code Issues Packages Projects Releases Wiki Activity

docker: update infra_image to new registry (#23927)

Browse Source 
The gcr.io container registry is shutting down in March. Update the default
`image_image` for Docker's "pause" containers to point to the new location
hosted by the k8s project.

Fixes: https://github.com/hashicorp/nomad/issues/23911
Ref: https://hashicorp.atlassian.net/browse/NET-10942
This commit is contained in:
Tim Gross
2024-09-06 14:34:03 -04:00
committed by GitHub
parent bd8569e16e
commit 192d70cee7
6 changed files with 19 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
.changelog/23927.txt Normal file
View File

@@ -0,0 +1,3 @@
```release-note:breaking-change
docker: The default infra_image for pause containers is now registry.k8s.io/pause
```

2
drivers/docker/config.go
View File

@@ -275,7 +275,7 @@ var (
"infra_image": hclspec.NewDefault( "infra_image": hclspec.NewDefault(
hclspec.NewAttr("infra_image", "string", false), hclspec.NewAttr("infra_image", "string", false),
hclspec.NewLiteral(fmt.Sprintf( hclspec.NewLiteral(fmt.Sprintf(
`"gcr.io/google_containers/pause-%s:3.1"`, `"registry.k8s.io/pause-%s:3.3"`,
runtime.GOARCH, runtime.GOARCH,
)), )),
), ),

2
drivers/docker/driver_unix_test.go
View File

@@ -712,7 +712,7 @@ func TestDockerDriver_Start_Image_HTTPS(t *testing.T) {
testutil.DockerCompatible(t) testutil.DockerCompatible(t)
taskCfg := TaskConfig{ taskCfg := TaskConfig{
Image: "https://gcr.io/google_containers/pause:3.2", Image: "https://registry.k8s.io/pause:3.3",
ImagePullTimeout: "5m", ImagePullTimeout: "5m",
} }
task := &drivers.TaskConfig{ task := &drivers.TaskConfig{

6
drivers/docker/network_test.go
View File

@@ -28,7 +28,7 @@ func TestDriver_createSandboxContainerConfig(t *testing.T) {
expectedOutputOpts: &docker.CreateContainerOptions{ expectedOutputOpts: &docker.CreateContainerOptions{
Name: "nomad_init_768b5e8c-a52e-825c-d564-51100230eb62", Name: "nomad_init_768b5e8c-a52e-825c-d564-51100230eb62",
Config: &docker.Config{ Config: &docker.Config{
Image: "gcr.io/google_containers/pause-amd64:3.1", Image: "registry.k8s.io/pause-amd64:3.3",
Labels: map[string]string{ Labels: map[string]string{
dockerLabelAllocID: "768b5e8c-a52e-825c-d564-51100230eb62", dockerLabelAllocID: "768b5e8c-a52e-825c-d564-51100230eb62",
}, },
@@ -48,7 +48,7 @@ func TestDriver_createSandboxContainerConfig(t *testing.T) {
expectedOutputOpts: &docker.CreateContainerOptions{ expectedOutputOpts: &docker.CreateContainerOptions{
Name: "nomad_init_768b5e8c-a52e-825c-d564-51100230eb62", Name: "nomad_init_768b5e8c-a52e-825c-d564-51100230eb62",
Config: &docker.Config{ Config: &docker.Config{
Image: "gcr.io/google_containers/pause-amd64:3.1", Image: "registry.k8s.io/pause-amd64:3.3",
Hostname: "linux", Hostname: "linux",
Labels: map[string]string{ Labels: map[string]string{
dockerLabelAllocID: "768b5e8c-a52e-825c-d564-51100230eb62", dockerLabelAllocID: "768b5e8c-a52e-825c-d564-51100230eb62",
@@ -65,7 +65,7 @@ func TestDriver_createSandboxContainerConfig(t *testing.T) {
d := &Driver{ d := &Driver{
config: &DriverConfig{ config: &DriverConfig{
InfraImage: "gcr.io/google_containers/pause-amd64:3.1", InfraImage: "registry.k8s.io/pause-amd64:3.3",
}, },
} }

5
website/content/docs/drivers/docker.mdx
View File

@@ -1014,8 +1014,9 @@ host system.
- `infra_image` - This is the Docker image to use when creating the parent - `infra_image` - This is the Docker image to use when creating the parent
container necessary when sharing network namespaces between tasks. Defaults to container necessary when sharing network namespaces between tasks. Defaults to
`gcr.io/google_containers/pause-<goarch>:3.1`. The image will only be pulled from `registry.k8s.io/pause-<goarch>:3.3`. The image will only be pulled from the
the container registry if its tag is `latest` or the image doesn't yet exist locally. container registry if its tag is `latest` or the image doesn't yet exist
locally.
- `infra_image_pull_timeout` - A time duration that controls how long Nomad will - `infra_image_pull_timeout` - A time duration that controls how long Nomad will
wait before cancelling an in-progress pull of the Docker image as specified in wait before cancelling an in-progress pull of the Docker image as specified in

8
website/content/docs/upgrade/upgrade-specific.mdx
View File

@@ -21,6 +21,13 @@ Nomad 1.9.0 no longer supports the HCLv1 format for job specifications. Using
the `-hcl1` option for the `job run`, `job plan`, and `job validate` commands the `-hcl1` option for the `job run`, `job plan`, and `job validate` commands
will no longer work. will no longer work.
#### Default Docker `infra_image` changed
Due to the deprecation of the third-party `gcr.io` registry, the default Docker
[`infra_image`][] is now `registry.k8s.io/pause-<arch>:3.3`. If you do not
override the default, clients using the `docker` driver will make outbound
requests to the new registry.
#### Dropped support for older clients #### Dropped support for older clients
Nomad 1.9.0 removes support for Nomad client agents older than 1.6.0. Older Nomad 1.9.0 removes support for Nomad client agents older than 1.6.0. Older
@@ -2180,3 +2187,4 @@ deleted and then Nomad 0.3.0 can be launched.
[Workload Identity]: /nomad/docs/concepts/workload-identity [Workload Identity]: /nomad/docs/concepts/workload-identity
[Process Isolation]: https://learn.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container#process-isolation [Process Isolation]: https://learn.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/hyperv-container#process-isolation
[reschedule]: /nomad/docs/jobs-specification/reschedule [reschedule]: /nomad/docs/jobs-specification/reschedule
[`infra_image`]: /nomad/docs/drivers/docker#infra_image