Finally had a chance to try running confined kubelet with the kubernetes-support interface in a live Kubernetes cluster. Attached a script that more or less captures what I did.
Kubelet fails to come up with the following error: error: failed to run Kubelet: failed to create kubelet: mkdir /var/lib/dockershim: permission denied This path doesn't appear to be configurable today, although they are adding a hidden --experimental-dockershim-root-directory flag in Kubernetes 1.7 that should cover it. Seems like we'll need to either wait for the new flag, or add write access to /var/lib/dockershim in the kubernetes-support interface. ** Attachment added: "test-confined-kubelet-with-juju.sh" https://bugs.launchpad.net/snapd/+bug/1664638/+attachment/4873686/+files/test-confined-kubelet-with-juju.sh -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1664638 Title: Need an interface for kubernetes To manage notifications about this bug go to: https://bugs.launchpad.net/snapd/+bug/1664638/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
