How can I apply an update immediately, bypassing update windows, canary releases, and manual update mode?
To apply a Deckhouse Kubernetes Platform (DKP) update immediately,
add the annotation release.deckhouse.io/apply-now: "true" to the corresponding DeckhouseRelease resource.
This will bypass update windows, canary release settings, and the manual cluster update mode. The update will be applied immediately after the annotation is set.
Example command to set the annotation and skip update windows for version v1.56.2:
d8 k annotate deckhousereleases v1.56.2 release.deckhouse.io/apply-now="true"
Example of a resource with the annotation set:
apiVersion: deckhouse.io/v1alpha1
kind: DeckhouseRelease
metadata:
annotations:
release.deckhouse.io/apply-now: "true"
...
How can I tell that an update is in progress?
During an update:
- The
DeckhouseUpdatingalert is active. - The
deckhousePod is not in theReadystate. If the Pod stays in a non-Readystate for a long time, it may indicate an issue with DKP that requires investigation.
How can I tell that the update was successful?
If the DeckhouseUpdating alert is gone, the update has finished.
You can also check the status of DKP releases in the cluster with the following command:
d8 k get deckhouserelease
Example output:
NAME PHASE TRANSITIONTIME MESSAGE
v1.46.8 Superseded 13d
v1.46.9 Superseded 11d
v1.47.0 Superseded 4h12m
v1.47.1 Deployed 4h12m
The Deployed status means the cluster has switched to the corresponding version,
but it doesn’t guarantee that the update has been successful.
To ensure the update completed successfully, check the state of the deckhouse Pod with the following command:
d8 k -n d8-system get pods -l app=deckhouse
Example output:
NAME READY STATUS RESTARTS AGE
deckhouse-7844b47bcd-qtbx9 1/1 Running 0 1d
- If the Pod is
Runningand shows1/1underREADY, it means the update completed successfully. - If the Pod is
Runningbut shows0/1underREADY, it means the update is still in progress. If it stays like this for more than 20–30 minutes, it may indicate a problem with DKP that requires investigation. - If the Pod is not
Running, it may indicate a problem with DKP that requires investigation.
If something goes wrong
-
Check the logs using the following command:
d8 k -n d8-system logs -f -l app=deckhouse | jq -Rr 'fromjson? | .msg' - Collect debug information and contact DKP technical support.
- Ask for help from the community.
How can I know when a new DKP version is available for the cluster?
As soon as a new version appears on the configured release channel:
- The
DeckhouseReleaseIsWaitingManualApprovalalert will appear if the cluster is in manual update mode. - A new DeckhouseRelease custom resource will be created.
To see the list of releases, run
d8 k get deckhousereleases. If the new version is inPendingstate, it means it hasn’t been installed yet. Possible reasons:- Manual update mode is enabled.
- Automatic update mode is enabled and update windows are scheduled, but the window hasn’t started yet.
- Automatic update mode is enabled and update windows are not scheduled,
but the update is delayed by a random period to reduce load on the container image registry.
The
status.messagefield of the DeckhouseRelease resource will show a corresponding message. - The
update.notification.minimalNotificationTimeparameter is set, and the delay period hasn’t elapsed.
How can I receive information about upcoming updates in advance?
You can get information about upcoming minor DKP version updates on the release channel in one of the following ways:
- Enable manual update mode. A new DeckhouseRelease resource and the DeckhouseReleaseIsWaitingManualApproval alert will appear when a new version is available.
- Enable automatic update mode and set a delay using the
minimalNotificationTimeparameter. A new DeckhouseRelease resource will appear when a new version is available. If you also set a webhook URL in theupdate.notification.webhookparameter, a notification will be sent about the upcoming update.
How can I check DKP versions available in different release channels?
For information about the current DKP versions across all release channels, visit releases.deckhouse.io.
What should I do if DKP is not receiving updates from the configured channel?
- Ensure the correct release channel is configured.
-
Check that DNS resolution for the Deckhouse image registry is working correctly.
Get and compare the IP addresses of
registry.deckhouse.iofrom both a node and thedeckhousePod. They must match.Example of obtaining an IP of
registry.deckhouse.iofrom a node:getent ahosts registry.deckhouse.ioExample output:
185.193.90.38 STREAM registry.deckhouse.io 185.193.90.38 DGRAM 185.193.90.38 RAWExample of obtaining an IP of
registry.deckhouse.iofrom thedeckhousePod:d8 k -n d8-system exec -ti svc/deckhouse-leader -c deckhouse -- getent ahosts registry.deckhouse.ioExample output:
185.193.90.38 STREAM registry.deckhouse.io 185.193.90.38 DGRAM registry.deckhouse.ioIf the resulted IPs do not match, check DNS settings on the node. Pay attention to the
searchdomain list in/etc/resolv.conf, which affects name resolution in thedeckhousePod. If thesearchparameter in/etc/resolv.conffile specifies a domain with wildcard DNS resolution configured, this may lead to incorrect IP address resolution for the Deckhouse image registry (see example below).