Use HostToContainer mountPropagation

For any host mounts that include /var/lib/kubelet, use HostToContainer mountPropagation, which avoids creating extra references to mounts in other containers. Affects the following resources: * haproxy-anchor daemonset * kubernetes-apiserver-anchor daemonset * kubernetes-controller-manager-anchor daemonset * kubernetes-scheduler-anchor daemonset Change-Id: Ib7fb018c4c1916d00311a73f64f77a99b682d4c8
2021-01-07 18:03:58 +00:00 · 2021-01-07 18:03:58 +00:00 · 946a28dc76
parent f29d6df68f
commit 946a28dc76
8 changed files with 9 additions and 4 deletions
--- a/charts/apiserver/Chart.yaml
+++ b/charts/apiserver/Chart.yaml
@ -15,4 +15,4 @@
 apiVersion: v1
 description: A chart for Kubernetes API server
 name: apiserver
-version: 0.1.0
+version: 0.1.1
--- a/charts/apiserver/templates/daemonset.yaml
+++ b/charts/apiserver/templates/daemonset.yaml
@ -96,6 +96,7 @@ spec:
              mountPath: /certs
            - name: host
              mountPath: /host
+              mountPropagation: HostToContainer
            - name: {{ .Values.service.name }}-keys
              mountPath: /keys
            - name: {{ .Values.service.name }}-bin
--- a/charts/controller_manager/Chart.yaml
+++ b/charts/controller_manager/Chart.yaml
@ -15,4 +15,4 @@
 apiVersion: v1
 description: A chart for Kubernetes controller-manager
 name: controller_manager
-version: 0.1.0
+version: 0.1.1
--- a/charts/controller_manager/templates/daemonset.yaml
+++ b/charts/controller_manager/templates/daemonset.yaml
@ -90,6 +90,7 @@ spec:
              mountPath: /configmap
            - name: host
              mountPath: /host
+              mountPropagation: HostToContainer
            - name: secret
              mountPath: /secret
            - name: pod-tmp
--- a/charts/haproxy/Chart.yaml
+++ b/charts/haproxy/Chart.yaml
@ -1,4 +1,4 @@
 apiVersion: v1
 description: A chart for using HAProxy for Kubernetes API server discovery
 name: haproxy
-version: 0.1.0
+version: 0.1.1
--- a/charts/haproxy/templates/daemonset.yaml
+++ b/charts/haproxy/templates/daemonset.yaml
@ -64,6 +64,7 @@ spec:
              readOnly: false
            - name: host
              mountPath: /host
+              mountPropagation: HostToContainer
      containers:
        - name: anchor
          image: {{ .Values.images.tags.anchor }}
@ -101,6 +102,7 @@ spec:
              mountPath: /tmp/etc
            - name: host
              mountPath: /host
+              mountPropagation: HostToContainer
            - name: pod-tmp
              mountPath: /tmp
      volumes:
--- a/charts/scheduler/Chart.yaml
+++ b/charts/scheduler/Chart.yaml
@ -1,4 +1,4 @@
 apiVersion: v1
 description: A chart for Kubernetes scheduler.
 name: scheduler
-version: 0.1.0
+version: 0.1.1
--- a/charts/scheduler/templates/sched-anchor.yaml
+++ b/charts/scheduler/templates/sched-anchor.yaml
@ -82,6 +82,7 @@ spec:
              mountPath: /configmap
            - name: host
              mountPath: /host
+              mountPropagation: HostToContainer
            - name: secret
              mountPath: /secret
            - name: pod-tmp