Changes to kubelet to support win containers

2016-08-24 10:49:06 -04:00 · 2016-08-24 10:49:06 -04:00 · 244152544c
commit 244152544c
parent 09285864db
8 changed files with 134 additions and 422 deletions
--- a/pkg/apis/componentconfig/v1alpha1/defaults.go
+++ b/pkg/apis/componentconfig/v1alpha1/defaults.go
@ -196,7 +196,7 @@ func SetDefaults_KubeletConfiguration(obj *KubeletConfiguration) {
 	if obj.DockerExecHandlerName == "" {
 		obj.DockerExecHandlerName = "native"
 	}
-	if obj.DockerEndpoint == "" {
+	if obj.DockerEndpoint == "" && runtime.GOOS != "windows" {
 		obj.DockerEndpoint = "unix:///var/run/docker.sock"
 	}
 	if obj.EventBurst == 0 {
--- a/pkg/kubelet/cm/container_manager_stub.go
+++ b/pkg/kubelet/cm/container_manager_stub.go
@ -1,5 +1,3 @@
-// +build !linux
-
 /*
 Copyright 2015 The Kubernetes Authors.

@ -25,6 +23,8 @@ import (

 type containerManagerStub struct{}

+var _ ContainerManager = &containerManagerStub{}
+
 func (cm *containerManagerStub) Start(_ *api.Node) error {
 	glog.V(2).Infof("Starting stub container manager")
 	return nil
--- a/pkg/kubelet/cm/container_manager_windows.go
+++ b/pkg/kubelet/cm/container_manager_windows.go
@ -0,0 +1,26 @@
+/*
+Copyright 2015 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package cm
+
+import (
+	"k8s.io/kubernetes/pkg/kubelet/cadvisor"
+	"k8s.io/kubernetes/pkg/util/mount"
+)
+
+func NewContainerManager(mountUtil mount.Interface, cadvisorInterface cadvisor.Interface, nodeConfig NodeConfig) (ContainerManager, error) {
+	return NewStubContainerManager(), nil
+}
--- a/pkg/kubelet/dockertools/docker_manager.go
+++ b/pkg/kubelet/dockertools/docker_manager.go
@ -115,10 +115,6 @@ var (
 	defaultSeccompOpt = []dockerOpt{{"seccomp", "unconfined", ""}}
 )

-type WindowsDockerManager struct {
-	*DockerManager
-}
-
 type DockerManager struct {
 	client              DockerInterface
 	recorder            record.EventRecorder
@ -206,71 +202,6 @@ func PodInfraContainerEnv(env map[string]string) kubecontainer.Option {
 	}
 }

-type windowsRuntimeHelper struct {
-	kubecontainer.RuntimeHelper
-}
-
-func (h *windowsRuntimeHelper) GenerateRunContainerOptions(pod *api.Pod, container *api.Container, podIP string) (*kubecontainer.RunContainerOptions, error) {
-	return &kubecontainer.RunContainerOptions{
-		Hostname: "test-pod",
-	}, nil
-}
-
-func NewWindowsDockerManager(
-	client DockerInterface,
-	recorder record.EventRecorder,
-	livenessManager proberesults.Manager,
-	containerRefManager *kubecontainer.RefManager,
-	podGetter podGetter,
-	machineInfo *cadvisorapi.MachineInfo,
-	podInfraContainerImage string,
-	qps float32,
-	burst int,
-	containerLogsDir string,
-	osInterface kubecontainer.OSInterface,
-	networkPlugin network.NetworkPlugin,
-	runtimeHelper kubecontainer.RuntimeHelper,
-	httpClient types.HttpGetter,
-	execHandler ExecHandler,
-	oomAdjuster *oom.OOMAdjuster,
-	procFs procfs.ProcFSInterface,
-	cpuCFSQuota bool,
-	imageBackOff *flowcontrol.Backoff,
-	serializeImagePulls bool,
-	enableCustomMetrics bool,
-	hairpinMode bool,
-	seccompProfileRoot string,
-	options ...kubecontainer.Option) *WindowsDockerManager {
-	dockerManager := NewDockerManager(client,
-		recorder,
-		livenessManager,
-		containerRefManager,
-		podGetter,
-		machineInfo,
-		podInfraContainerImage,
-		qps,
-		burst,
-		containerLogsDir,
-		osInterface,
-		networkPlugin,
-		runtimeHelper,
-		httpClient,
-		execHandler,
-		oomAdjuster,
-		procFs,
-		cpuCFSQuota,
-		imageBackOff,
-		serializeImagePulls,
-		enableCustomMetrics,
-		hairpinMode,
-		seccompProfileRoot,
-		options...)
-
-	return &WindowsDockerManager{
-		DockerManager: dockerManager,
-	}
-}
-
 func NewDockerManager(
 	client DockerInterface,
 	recorder record.EventRecorder,
@ -410,19 +341,7 @@ var (
 // that the container passed is the infrastructure container of a pod and the responsibility
 // of the caller to ensure that the correct container is passed.
 func (dm *DockerManager) determineContainerIP(podNamespace, podName string, container *dockertypes.ContainerJSON) (string, error) {
-	result := ""
-
-	if container.NetworkSettings != nil {
-		result = container.NetworkSettings.IPAddress
-		if len(result) == 0 {
-			for _, network := range container.NetworkSettings.Networks {
-				if len(network.IPAddress) > 0 {
-					result = network.IPAddress
-					break
-				}
-			}
-		}
-	}
+	result := getContainerIP(container)

 	networkMode := getDockerNetworkMode(container)
 	isHostNetwork := networkMode == namespaceModeHost
@ -707,7 +626,6 @@ func (dm *DockerManager) runContainer(
 		cpuShares = milliCPUToShares(cpuRequest.MilliValue())
 	}
 	var devices []dockercontainer.DeviceMapping
-	_ = devices
 	if nvidiaGPULimit.Value() != 0 {
 		// Experimental. For now, we hardcode /dev/nvidia0 no matter what the user asks for
 		// (we only support one device per node).
@ -741,23 +659,20 @@ func (dm *DockerManager) runContainer(
 		}
 	}

-	_ = cpuShares
-	_ = memoryLimit
-	_ = securityOpts
 	hc := &dockercontainer.HostConfig{
-		// Binds:          binds,
+		Binds:          binds,
 		NetworkMode:    dockercontainer.NetworkMode(netMode),
-		// IpcMode:        dockercontainer.IpcMode(ipcMode),
-		// UTSMode:        dockercontainer.UTSMode(utsMode),
-		// PidMode:        dockercontainer.PidMode(pidMode),
-		// ReadonlyRootfs: readOnlyRootFilesystem(container),
-		// Resources: dockercontainer.Resources{
-		// 	Memory:     memoryLimit,
-		// 	MemorySwap: -1,
-		// 	CPUShares:  cpuShares,
-		// 	Devices:    devices,
-		// },
-		// SecurityOpt: securityOpts,
+		IpcMode:        dockercontainer.IpcMode(ipcMode),
+		UTSMode:        dockercontainer.UTSMode(utsMode),
+		PidMode:        dockercontainer.PidMode(pidMode),
+		ReadonlyRootfs: readOnlyRootFilesystem(container),
+		Resources: dockercontainer.Resources{
+			Memory:     memoryLimit,
+			MemorySwap: -1,
+			CPUShares:  cpuShares,
+			Devices:    devices,
+		},
+		SecurityOpt: fmtSecurityOpts,
 	}

 	// Set sysctls if requested
@ -820,10 +735,10 @@ func (dm *DockerManager) runContainer(

 	glog.V(3).Infof("Container %v/%v/%v: setting entrypoint \"%v\" and command \"%v\"", pod.Namespace, pod.Name, container.Name, dockerOpts.Config.Entrypoint, dockerOpts.Config.Cmd)

-	// supplementalGids := dm.runtimeHelper.GetExtraSupplementalGroupsForPod(pod)
-	// securityContextProvider := securitycontext.NewSimpleSecurityContextProvider()
-	// securityContextProvider.ModifyContainerConfig(pod, container, dockerOpts.Config)
-	// securityContextProvider.ModifyHostConfig(pod, container, dockerOpts.HostConfig, supplementalGids)
+	supplementalGids := dm.runtimeHelper.GetExtraSupplementalGroupsForPod(pod)
+	securityContextProvider := securitycontext.NewSimpleSecurityContextProvider()
+	securityContextProvider.ModifyContainerConfig(pod, container, dockerOpts.Config)
+	securityContextProvider.ModifyHostConfig(pod, container, dockerOpts.HostConfig, supplementalGids)
 	createResp, err := dm.client.CreateContainer(dockerOpts)
 	if err != nil {
 		dm.recorder.Eventf(ref, api.EventTypeWarning, events.FailedToCreateContainer, "Failed to create docker container %q of pod %q with error: %v", container.Name, format.Pod(pod), err)
@ -999,10 +914,6 @@ func (dm *DockerManager) PullImage(image kubecontainer.ImageSpec, secrets []api.
 	return dm.dockerPuller.Pull(image.Image, secrets)
 }

-func (dm *WindowsDockerManager) PullImage(image kubecontainer.ImageSpec, secrets []api.Secret) error {
-	return fmt.Errorf("Image pull not yet supported")
-}
-
 // IsImagePresent checks whether the container image is already in the local storage.
 func (dm *DockerManager) IsImagePresent(image kubecontainer.ImageSpec) (bool, error) {
 	return dm.dockerPuller.IsImagePresent(image.Image)
@ -1821,9 +1732,9 @@ func (dm *DockerManager) runContainerInPod(pod *api.Pod, container *api.Containe

 	// Check if current docker version is higher than 1.10. Otherwise, we have to apply OOMScoreAdj instead of using docker API.
 	// TODO: Remove this logic after we stop supporting docker version < 1.10.
-	// if err = dm.applyOOMScoreAdjIfNeeded(pod, container, containerInfo); err != nil {
-	// 	return kubecontainer.ContainerID{}, err
-	// }
+	if err = dm.applyOOMScoreAdjIfNeeded(pod, container, containerInfo); err != nil {
+		return kubecontainer.ContainerID{}, err
+	}

 	// The addNDotsOption call appends the ndots option to the resolv.conf file generated by docker.
 	// This resolv.conf file is shared by all containers of the same pod, and needs to be modified only once per pod.
@ -2148,116 +2059,6 @@ func (dm *DockerManager) computePodContainerChanges(pod *api.Pod, podStatus *kub
 	}, nil
 }

-func (dm *WindowsDockerManager) computePodContainerChanges(pod *api.Pod, podStatus *kubecontainer.PodStatus) (podContainerChangesSpec, error) {
-	start := time.Now()
-	defer func() {
-		metrics.ContainerManagerLatency.WithLabelValues("computePodContainerChanges").Observe(metrics.SinceInMicroseconds(start))
-	}()
-	glog.V(5).Infof("Syncing Pod %q: %+v", format.Pod(pod), pod)
-
-	containersToStart := make(map[int]string)
-	containersToKeep := make(map[kubecontainer.DockerID]int)
-
-	// var err error
-
-	// Skip podInfraContainer checking and creation
-	// var podInfraContainerID kubecontainer.DockerID
-	// var changed bool
-	// podInfraContainerStatus := podStatus.FindContainerStatusByName(PodInfraContainerName)
-	// if podInfraContainerStatus != nil && podInfraContainerStatus.State == kubecontainer.ContainerStateRunning {
-	// 	glog.V(4).Infof("Found pod infra container for %q", format.Pod(pod))
-	// 	changed, err = dm.podInfraContainerChanged(pod, podInfraContainerStatus)
-	// 	if err != nil {
-	// 		return podContainerChangesSpec{}, err
-	// 	}
-	// }
-
-	// createPodInfraContainer := true
-	// if podInfraContainerStatus == nil || podInfraContainerStatus.State != kubecontainer.ContainerStateRunning {
-	// 	glog.V(2).Infof("Need to restart pod infra container for %q because it is not found", format.Pod(pod))
-	// } else if changed {
-	// 	glog.V(2).Infof("Need to restart pod infra container for %q because it is changed", format.Pod(pod))
-	// } else {
-	// 	glog.V(4).Infof("Pod infra container looks good, keep it %q", format.Pod(pod))
-	// 	createPodInfraContainer = false
-	// 	podInfraContainerID = kubecontainer.DockerID(podInfraContainerStatus.ID.ID)
-	// 	containersToKeep[podInfraContainerID] = -1
-	// }
-
-	for index, container := range pod.Spec.Containers {
-		expectedHash := kubecontainer.HashContainer(&container)
-
-		containerStatus := podStatus.FindContainerStatusByName(container.Name)
-		if containerStatus == nil || containerStatus.State != kubecontainer.ContainerStateRunning {
-			if kubecontainer.ShouldContainerBeRestarted(&container, pod, podStatus) {
-				// If we are here it means that the container is dead and should be restarted, or never existed and should
-				// be created. We may be inserting this ID again if the container has changed and it has
-				// RestartPolicy::Always, but it's not a big deal.
-				message := fmt.Sprintf("Container %+v is dead, but RestartPolicy says that we should restart it.", container)
-				glog.V(3).Info(message)
-				containersToStart[index] = message
-			}
-			continue
-		}
-
-		containerID := kubecontainer.DockerID(containerStatus.ID.ID)
-		hash := containerStatus.Hash
-		glog.V(3).Infof("pod %q container %q exists as %v", format.Pod(pod), container.Name, containerID)
-
-		// if createPodInfraContainer {
-		// 	// createPodInfraContainer == true and Container exists
-		// 	// If we're creating infra container everything will be killed anyway
-		// 	// If RestartPolicy is Always or OnFailure we restart containers that were running before we
-		// 	// killed them when restarting Infra Container.
-		// 	if pod.Spec.RestartPolicy != api.RestartPolicyNever {
-		// 		message := fmt.Sprintf("Infra Container is being recreated. %q will be restarted.", container.Name)
-		// 		glog.V(1).Info(message)
-		// 		containersToStart[index] = message
-		// 	}
-		// 	continue
-		// }
-
-		// At this point, the container is running and pod infra container is good.
-		// We will look for changes and check healthiness for the container.
-		containerChanged := hash != 0 && hash != expectedHash
-		if containerChanged {
-			message := fmt.Sprintf("pod %q container %q hash changed (%d vs %d), it will be killed and re-created.", format.Pod(pod), container.Name, hash, expectedHash)
-			glog.Info(message)
-			containersToStart[index] = message
-			continue
-		}
-
-		liveness, found := dm.livenessManager.Get(containerStatus.ID)
-		if !found || liveness == proberesults.Success {
-			containersToKeep[containerID] = index
-			continue
-		}
-		if pod.Spec.RestartPolicy != api.RestartPolicyNever {
-			message := fmt.Sprintf("pod %q container %q is unhealthy, it will be killed and re-created.", format.Pod(pod), container.Name)
-			glog.Info(message)
-			containersToStart[index] = message
-		}
-	}
-
-	// After the loop one of the following should be true:
-	// - createPodInfraContainer is true and containersToKeep is empty.
-	// (In fact, when createPodInfraContainer is false, containersToKeep will not be touched).
-	// - createPodInfraContainer is false and containersToKeep contains at least ID of Infra Container
-
-	// If Infra container is the last running one, we don't want to keep it.
-	// if !createPodInfraContainer && len(containersToStart) == 0 && len(containersToKeep) == 1 {
-	// 	containersToKeep = make(map[kubecontainer.DockerID]int)
-	// }
-
-	return podContainerChangesSpec{
-		StartInfraContainer: false,
-		InfraChanged:        false,
-		InfraContainerId:    "",
-		ContainersToStart:   containersToStart,
-		ContainersToKeep:    containersToKeep,
-	}, nil
-}
-
 // Sync the running pod to match the specified desired pod.
 func (dm *DockerManager) SyncPod(pod *api.Pod, _ api.PodStatus, podStatus *kubecontainer.PodStatus, pullSecrets []api.Secret, backOff *flowcontrol.Backoff) (result kubecontainer.PodSyncResult) {
 	start := time.Now()
@ -2509,7 +2310,14 @@ func (dm *DockerManager) tryContainerStart(container *api.Container, pod *api.Po
 		restartCount = containerStatus.RestartCount + 1
 	}

-	_, err = dm.runContainerInPod(pod, container, namespaceMode, namespaceMode, pidMode, podIP, restartCount)
+	// Allow override of networking mode for specific platforms (e.g. Windows)
+	netMode := getNetworkingMode()
+	if netMode == "" {
+		// If not overriden, use the namespace mode
+		netMode = namespaceMode
+	}
+
+	_, err = dm.runContainerInPod(pod, container, netMode, namespaceMode, pidMode, podIP, restartCount)
 	if err != nil {
 		// TODO(bburns) : Perhaps blacklist a container after N failures?
 		return kubecontainer.ErrRunContainer, err.Error()
@ -2600,196 +2408,6 @@ func findActiveInitContainer(pod *api.Pod, podStatus *kubecontainer.PodStatus) (
 	return &pod.Spec.InitContainers[0], nil, false
 }

-// Sync the running pod to match the specified desired pod.
-func (dm *WindowsDockerManager) SyncPod(pod *api.Pod, _ api.PodStatus, podStatus *kubecontainer.PodStatus, pullSecrets []api.Secret, backOff *flowcontrol.Backoff) (result kubecontainer.PodSyncResult) {
-	start := time.Now()
-	defer func() {
-		metrics.ContainerManagerLatency.WithLabelValues("SyncPod").Observe(metrics.SinceInMicroseconds(start))
-	}()
-
-	containerChanges, err := dm.computePodContainerChanges(pod, podStatus)
-	if err != nil {
-		result.Fail(err)
-		return
-	}
-	glog.V(3).Infof("Got container changes for pod %q: %+v", format.Pod(pod), containerChanges)
-
-	// if containerChanges.InfraChanged {
-	// 	ref, err := api.GetReference(pod)
-	// 	if err != nil {
-	// 		glog.Errorf("Couldn't make a ref to pod %q: '%v'", format.Pod(pod), err)
-	// 	}
-	// 	dm.recorder.Eventf(ref, api.EventTypeNormal, "InfraChanged", "Pod infrastructure changed, it will be killed and re-created.")
-	// }
-	// if containerChanges.StartInfraContainer || (len(containerChanges.ContainersToKeep) == 0 && len(containerChanges.ContainersToStart) == 0) {
-	// 	if len(containerChanges.ContainersToKeep) == 0 && len(containerChanges.ContainersToStart) == 0 {
-	// 		glog.V(4).Infof("Killing Infra Container for %q because all other containers are dead.", format.Pod(pod))
-	// 	} else {
-	// 		glog.V(4).Infof("Killing Infra Container for %q, will start new one", format.Pod(pod))
-	// 	}
-
-	// 	// Killing phase: if we want to start new infra container, or nothing is running kill everything (including infra container)
-	// 	// TODO(random-liu): We'll use pod status directly in the future
-	// 	killResult := dm.killPodWithSyncResult(pod, kubecontainer.ConvertPodStatusToRunningPod(podStatus))
-	// 	result.AddPodSyncResult(killResult)
-	// 	if killResult.Error() != nil {
-	// 		return
-	// 	}
-	// } else {
-	// Otherwise kill any running containers in this pod which are not specified as ones to keep.
-	runningContainerStatues := podStatus.GetRunningContainerStatuses()
-	for _, containerStatus := range runningContainerStatues {
-		_, keep := containerChanges.ContainersToKeep[kubecontainer.DockerID(containerStatus.ID.ID)]
-		if !keep {
-			glog.V(3).Infof("Killing unwanted container %q(id=%q) for pod %q", containerStatus.Name, containerStatus.ID, format.Pod(pod))
-			// attempt to find the appropriate container policy
-			var podContainer *api.Container
-			var killMessage string
-			for i, c := range pod.Spec.Containers {
-				if c.Name == containerStatus.Name {
-					podContainer = &pod.Spec.Containers[i]
-					killMessage = containerChanges.ContainersToStart[i]
-					break
-				}
-			}
-			killContainerResult := kubecontainer.NewSyncResult(kubecontainer.KillContainer, containerStatus.Name)
-			result.AddSyncResult(killContainerResult)
-			if err := dm.KillContainerInPod(containerStatus.ID, podContainer, pod, killMessage, nil); err != nil {
-				killContainerResult.Fail(kubecontainer.ErrKillContainer, err.Error())
-				glog.Errorf("Error killing container %q(id=%q) for pod %q: %v", containerStatus.Name, containerStatus.ID, format.Pod(pod), err)
-				return
-			}
-		}
-	}
-	// }
-
-	// We pass the value of the podIP down to runContainerInPod, which in turn
-	// passes it to various other functions, in order to facilitate
-	// functionality that requires this value (hosts file and downward API)
-	// and avoid races determining the pod IP in cases where a container
-	// requires restart but the podIP isn't in the status manager yet.
-	//
-	// We default to the IP in the passed-in pod status, and overwrite it if the
-	// infra container needs to be (re)started.
-	podIP := ""
-	if podStatus != nil {
-		podIP = podStatus.IP
-	}
-
-	// If we should create infra container then we do it first.
-	// podInfraContainerID := containerChanges.InfraContainerId
-	// if containerChanges.StartInfraContainer && (len(containerChanges.ContainersToStart) > 0) {
-	// 	glog.V(4).Infof("Creating pod infra container for %q", format.Pod(pod))
-	// 	startContainerResult := kubecontainer.NewSyncResult(kubecontainer.StartContainer, PodInfraContainerName)
-	// 	result.AddSyncResult(startContainerResult)
-	// 	var msg string
-	// 	podInfraContainerID, err, msg = dm.createPodInfraContainer(pod)
-	// 	if err != nil {
-	// 		startContainerResult.Fail(err, msg)
-	// 		glog.Errorf("Failed to create pod infra container: %v; Skipping pod %q", err, format.Pod(pod))
-	// 		return
-	// 	}
-
-	// 	setupNetworkResult := kubecontainer.NewSyncResult(kubecontainer.SetupNetwork, kubecontainer.GetPodFullName(pod))
-	// 	result.AddSyncResult(setupNetworkResult)
-	// 	if !usesHostNetwork(pod) {
-	// 		// Call the networking plugin
-	// 		err = dm.networkPlugin.SetUpPod(pod.Namespace, pod.Name, podInfraContainerID)
-	// 		if err != nil {
-	// 			// TODO: (random-liu) There shouldn't be "Skipping pod" in sync result message
-	// 			message := fmt.Sprintf("Failed to setup network for pod %q using network plugins %q: %v; Skipping pod", format.Pod(pod), dm.networkPlugin.Name(), err)
-	// 			setupNetworkResult.Fail(kubecontainer.ErrSetupNetwork, message)
-	// 			glog.Error(message)
-
-	// 			// Delete infra container
-	// 			killContainerResult := kubecontainer.NewSyncResult(kubecontainer.KillContainer, PodInfraContainerName)
-	// 			result.AddSyncResult(killContainerResult)
-	// 			if delErr := dm.KillContainerInPod(kubecontainer.ContainerID{
-	// 				ID:   string(podInfraContainerID),
-	// 				Type: "docker"}, nil, pod, message); delErr != nil {
-	// 				killContainerResult.Fail(kubecontainer.ErrKillContainer, delErr.Error())
-	// 				glog.Warningf("Clear infra container failed for pod %q: %v", format.Pod(pod), delErr)
-	// 			}
-	// 			return
-	// 		}
-
-	// 		// Setup the host interface unless the pod is on the host's network (FIXME: move to networkPlugin when ready)
-	// 		var podInfraContainer *docker.Container
-	// 		podInfraContainer, err = dm.client.InspectContainer(string(podInfraContainerID))
-	// 		if err != nil {
-	// 			glog.Errorf("Failed to inspect pod infra container: %v; Skipping pod %q", err, format.Pod(pod))
-	// 			result.Fail(err)
-	// 			return
-	// 		}
-
-	// 		if dm.configureHairpinMode {
-	// 			if err = hairpin.SetUpContainer(podInfraContainer.State.Pid, network.DefaultInterfaceName); err != nil {
-	// 				glog.Warningf("Hairpin setup failed for pod %q: %v", format.Pod(pod), err)
-	// 			}
-	// 		}
-
-	// 		// Overwrite the podIP passed in the pod status, since we just started the infra container.
-	// 		podIP = dm.determineContainerIP(pod.Name, pod.Namespace, podInfraContainer)
-	// 	}
-	// }
-
-	// Start everything
-	for idx := range containerChanges.ContainersToStart {
-		container := &pod.Spec.Containers[idx]
-		startContainerResult := kubecontainer.NewSyncResult(kubecontainer.StartContainer, container.Name)
-		result.AddSyncResult(startContainerResult)
-
-		// containerChanges.StartInfraContainer causes the containers to be restarted for config reasons
-		// ignore backoff
-		if !containerChanges.StartInfraContainer {
-			isInBackOff, err, msg := dm.doBackOff(pod, container, podStatus, backOff)
-			if isInBackOff {
-				startContainerResult.Fail(err, msg)
-				glog.V(4).Infof("Backing Off restarting container %+v in pod %v", container, format.Pod(pod))
-				continue
-			}
-		}
-		glog.V(4).Infof("Creating container %+v in pod %v", container, format.Pod(pod))
-		// err, msg := dm.imagePuller.PullImage(pod, container, pullSecrets)
-		// if err != nil {
-		// 	startContainerResult.Fail(err, msg)
-		// 	continue
-		// }
-
-		// if container.SecurityContext != nil && container.SecurityContext.RunAsNonRoot != nil && *container.SecurityContext.RunAsNonRoot {
-		// 	err := dm.verifyNonRoot(container)
-		// 	if err != nil {
-		// 		startContainerResult.Fail(kubecontainer.ErrVerifyNonRoot, err.Error())
-		// 		glog.Errorf("Error running pod %q container %q: %v", format.Pod(pod), container.Name, err)
-		// 		continue
-		// 	}
-		// }
-		// For a new container, the RestartCount should be 0
-		restartCount := 0
-		containerStatus := podStatus.FindContainerStatusByName(container.Name)
-		if containerStatus != nil {
-			restartCount = containerStatus.RestartCount + 1
-		}
-
-		// TODO(dawnchen): Check RestartPolicy.DelaySeconds before restart a container
-		// Note: when configuring the pod's containers anything that can be configured by pointing
-		// to the namespace of the infra container should use namespaceMode.  This includes things like the net namespace
-		// and IPC namespace.  PID mode cannot point to another container right now.
-		// See createPodInfraContainer for infra container setup.
-		// namespaceMode := fmt.Sprintf("container:%v", podInfraContainerID)
-		namespaceMode := ""
-		_, err = dm.runContainerInPod(pod, container, namespaceMode, namespaceMode, getPidMode(pod), podIP, restartCount)
-		if err != nil {
-			startContainerResult.Fail(kubecontainer.ErrRunContainer, err.Error())
-			// TODO(bburns) : Perhaps blacklist a container after N failures?
-			glog.Errorf("Error running pod %q container %q: %v", format.Pod(pod), container.Name, err)
-			continue
-		}
-		// Successfully started the container; clear the entry in the failure
-	}
-	return
-}
-
 // verifyNonRoot returns an error if the container or image will run as the root user.
 func (dm *DockerManager) verifyNonRoot(container *api.Container) error {
 	if securitycontext.HasRunAsUser(container) {
@ -2996,7 +2614,7 @@ func (dm *DockerManager) GetPodStatus(uid kubetypes.UID, name, namespace string)
 			}
 		}
 		containerStatuses = append(containerStatuses, result)
-		if ip != "" {
+		if containerProvidesPodIP(dockerName) && ip != "" {
 			podStatus.IP = ip
 		}
 	}
--- a/pkg/kubelet/dockertools/docker_manager_linux.go
+++ b/pkg/kubelet/dockertools/docker_manager_linux.go
@ -0,0 +1,24 @@
+package dockertools
+
+import dockertypes "github.com/docker/engine-api/types"
+
+func getContainerIP(container *dockertypes.ContainerJSON) string {
+	result := ""
+	if container.NetworkSettings != nil {
+		result = container.NetworkSettings.IPAddress
+
+		// Fall back to IPv6 address if no IPv4 address is present
+		if result == "" {
+			result = container.NetworkSettings.GlobalIPv6Address
+		}
+	}
+	return result
+}
+
+// We don't want to override the networking mode on Linux.
+func getNetworkingMode() string { return "" }
+
+// Returns true if the container name matches the infrastructure's container name
+func containerProvidesPodIP(name *KubeletContainerName) bool {
+	return name.ContainerName == PodInfraContainerName
+}
--- a/pkg/kubelet/dockertools/docker_manager_windows.go
+++ b/pkg/kubelet/dockertools/docker_manager_windows.go
@ -0,0 +1,33 @@
+package dockertools
+
+import (
+	"os"
+
+	dockertypes "github.com/docker/engine-api/types"
+)
+
+func getContainerIP(container *dockertypes.ContainerJSON) string {
+	if container.NetworkSettings != nil {
+		for _, network := range container.NetworkSettings.Networks {
+			if network.IPAddress != "" {
+				return network.IPAddress
+			}
+		}
+	}
+	return ""
+}
+
+func getNetworkingMode() string {
+	// Allow override via env variable. Otherwise, use a default "kubenet" network
+	netMode := os.Getenv("CONTAINER_NETWORK")
+	if netMode == "" {
+		netMode = "kubenet"
+	}
+	return netMode
+}
+
+// Infrastructure containers are not supported on Windows. For this reason, we
+// make sure to not grab the infra container's IP for the pod.
+func containerProvidesPodIP(name *KubeletContainerName) bool {
+	return name.ContainerName != PodInfraContainerName
+}
--- a/pkg/kubelet/kubelet_pods.go
+++ b/pkg/kubelet/kubelet_pods.go
@ -25,6 +25,7 @@ import (
 	"os"
 	"path"
 	"path/filepath"
+	"runtime"
 	"sort"
 	"strings"

@ -261,16 +262,18 @@ func (kl *Kubelet) GenerateRunContainerOptions(pod *api.Pod, container *api.Cont
 		}
 	}

+	if runtime.GOOS != "windows" {
 		opts.Mounts, err = makeMounts(pod, kl.getPodDir(pod.UID), container, hostname, hostDomainName, podIP, volumes)
 		if err != nil {
 			return nil, err
 		}
+	}
 	opts.Envs, err = kl.makeEnvironmentVariables(pod, container, podIP)
 	if err != nil {
 		return nil, err
 	}

-	if len(container.TerminationMessagePath) != 0 {
+	if len(container.TerminationMessagePath) != 0 && runtime.GOOS != "windows" {
 		p := kl.getPodContainerDir(pod.UID, container.Name)
 		if err := os.MkdirAll(p, 0750); err != nil {
 			glog.Errorf("Error on creating %q: %v", p, err)
--- a/pkg/volume/volume.go
+++ b/pkg/volume/volume.go
@ -21,6 +21,7 @@ import (
 	"io/ioutil"
 	"os"
 	"path"
+	"runtime"
 	"time"

 	"k8s.io/kubernetes/pkg/api"
@ -214,16 +215,23 @@ func RenameDirectory(oldPath, newName string) (string, error) {
 	if err != nil {
 		return "", err
 	}
+
 	// os.Rename call fails on windows (https://github.com/golang/go/issues/14527)
 	// Replacing with copyFolder to the newPath and deleting the oldPath directory
-	// err = os.Rename(oldPath, newPath)
+	if runtime.GOOS == "windows" {
 		err = copyFolder(oldPath, newPath)
-
 		if err != nil {
 			return "", err
 		}
 		os.RemoveAll(oldPath)
 		return newPath, nil
+	}
+
+	err = os.Rename(oldPath, newPath)
+	if err != nil {
+		return "", err
+	}
+	return newPath, nil
 }

 func copyFolder(source string, dest string) (err error) {