Installs kube-apiserver.
To ensure maximum survivability during updates, currently kube-apiserver pods are created using Deployment with hostNetwork: true and it directly binds into node IP address. In addition, when only single replica is requested, we set maxUnavailable: 0 for upgrade strategy, to make sure there is at least one API server available. That means that existing kube-apiserver pod won't be removed until another one is responding. If you have only single controller node, then new one will not be able to start, since requested port is still occupied by the previous instance.
To finish the update, manually remove currently running kube-apiserver pod using following command:
kubectl delete pod $(kubectl get pods -l k8s-app=kube-apiserver | grep Running | cut -d" " -f1)While this may seem unreasonable, this operation is safe, because:
- new
kube-apiserverpod is already scheduled to the node, sokubeletitself manages it's lifetime kubeletwill actively try to restart failing pods, without a need of API server
After some time (up to 5 minutes, depending on kubelet's pod restart back-off delay), kube-apiserver pod
should be restarted and API server should become available again.
The following tables list the configurable parameters of the kube-apiserver chart and their default values.
| Parameter | Description | Default |
|---|---|---|
replicas |
Number of replicas of control plane components to run. Ideally it should equal to number of controller nodes in the cluster. | 1 |