Ben Cressey comments

Results 167 comments of


                                            Ben Cressey

Consider adding a mechanism for running a script specified in userdata

@stevehipwell - yes, thanks! It's now possible to run a script using the default bootstrap container without specifying a source. For example: ``` [settings.bootstrap-containers.hello-world] mode = "always" essential = false...

Disable GSP Firmware for select instance families.

> For some instance families in AWS, we wish to disable GSP firmware download in the NVIDIA kmod. Are we able to do this by checking for the hardware in...

Expose parallel image pulls settings

@larvacea that option doesn't work for Bottlerocket - changes to files in `/etc`, like kubelet's config, need to come through as settings so they can survive a node restart or...

Expose parallel image pulls settings

@ozahavi FWIW all `aws-k8s-*` AMIs default to `serializeImagePulls: false`, and `maxParallelImagePulls` is not set. Is your goal to limit the number of parallel image pulls?

How to disable IPv6 DAD to reduce startup delay of pods on IPv6 cluster

@larvacea @woehrl01 a couple of other ideas: Optimistic DAD might need to be combined with "use_optimistic", in order to actually make use of the tentative addresses. Also, given the evidence...

Enable low-jitter kernel options for kernel-6.1

> None of these options do anything without the user opting into them via kernel parameters - default behaviour for your users will stay the same. We'll need to run...

Should the bottlerocket containerd-config.toml file have discard_unpacked_layers set to true by default

`discard_unpacked_layers = false` is and always has been the default in Bottlerocket for the containerd snapshotter. ``` # containerd config dump version = 3 ... [plugins] [plugins.'io.containerd.cri.v1.images'] snapshotter = 'overlayfs'...

Bottlerocket 1.25 is preventing nvidia driver to start

From the logs, this seems like the problematic sequence: ``` # plugin manager starts Oct 17 12:05:33 ip-xx-xx-x-xx.ec2.internal kubelet[1655]: I1017 12:05:33.250347 1655 plugin_manager.go:118] "Starting Kubelet Plugin Manager" # k8s device...

Bottlerocket 1.25 is preventing nvidia driver to start

Also of interest, kubelet's plugin manager starts after the FS watcher starts: ``` Oct 17 12:05:33 ip-xx-xx-x-xx.ec2.internal nvidia-device-plugin[1667]: I1017 12:05:33.230706 1667 main.go:199] Starting FS watcher. Oct 17 12:05:33 ip-xx-xx-x-xx.ec2.internal kubelet[1655]:...

Ability to set ndots in /etc/resolv.conf

Regardless of what resolver the host distro uses, kubelet will pass a modified `resolv.conf` into containers that use the overlay network. If they're using glibc they will understand and respect...