k3s/cluster/gce/coreos/helper.sh

#!/bin/bash

# Copyright 2015 The Kubernetes Authors All rights reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

# A library of helper functions and constant for coreos os distro

# $1: if 'true', we're building a master yaml, else a node
function build-kube-env {
  local master=$1
  local file=$2

  rm -f ${file}
  # TODO(dawnchen): master node is still running with debian image
  if [[ "${master}" == "true" ]]; then
  cat >$file <<EOF
KUBERNETES_MASTER: "true"
ENV_TIMESTAMP: $(yaml-quote $(date -u +%Y-%m-%dT%T%z))
INSTANCE_PREFIX: $(yaml-quote ${INSTANCE_PREFIX})
NODE_INSTANCE_PREFIX: $(yaml-quote ${NODE_INSTANCE_PREFIX})
CLUSTER_IP_RANGE: $(yaml-quote ${CLUSTER_IP_RANGE:-10.244.0.0/16})
SERVER_BINARY_TAR_URL: $(yaml-quote ${SERVER_BINARY_TAR_URL})
SERVER_BINARY_TAR_HASH: $(yaml-quote ${SERVER_BINARY_TAR_HASH})
SALT_TAR_URL: $(yaml-quote ${SALT_TAR_URL})
SALT_TAR_HASH: $(yaml-quote ${SALT_TAR_HASH})
SERVICE_CLUSTER_IP_RANGE: $(yaml-quote ${SERVICE_CLUSTER_IP_RANGE})
ALLOCATE_NODE_CIDRS: $(yaml-quote ${ALLOCATE_NODE_CIDRS:-false})
ENABLE_CLUSTER_MONITORING: $(yaml-quote ${ENABLE_CLUSTER_MONITORING:-none})
ENABLE_CLUSTER_LOGGING: $(yaml-quote ${ENABLE_CLUSTER_LOGGING:-false})
ENABLE_CLUSTER_UI: $(yaml-quote ${ENABLE_CLUSTER_UI:-false})
ENABLE_NODE_LOGGING: $(yaml-quote ${ENABLE_NODE_LOGGING:-false})
LOGGING_DESTINATION: $(yaml-quote ${LOGGING_DESTINATION:-})
ELASTICSEARCH_LOGGING_REPLICAS: $(yaml-quote ${ELASTICSEARCH_LOGGING_REPLICAS:-})
ENABLE_CLUSTER_DNS: $(yaml-quote ${ENABLE_CLUSTER_DNS:-false})
ENABLE_CLUSTER_REGISTRY: $(yaml-quote ${ENABLE_CLUSTER_REGISTRY:-false})
CLUSTER_REGISTRY_DISK: $(yaml-quote ${CLUSTER_REGISTRY_DISK})
CLUSTER_REGISTRY_DISK_SIZE: $(yaml-quote ${CLUSTER_REGISTRY_DISK_SIZE})
DNS_REPLICAS: $(yaml-quote ${DNS_REPLICAS:-})
DNS_SERVER_IP: $(yaml-quote ${DNS_SERVER_IP:-})
DNS_DOMAIN: $(yaml-quote ${DNS_DOMAIN:-})
KUBE_USER: $(yaml-quote ${KUBE_USER})
KUBE_PASSWORD: $(yaml-quote ${KUBE_PASSWORD})
KUBE_BEARER_TOKEN: $(yaml-quote ${KUBE_BEARER_TOKEN})
KUBELET_TOKEN: $(yaml-quote ${KUBELET_TOKEN:-})
KUBE_PROXY_TOKEN: $(yaml-quote ${KUBE_PROXY_TOKEN:-})
ADMISSION_CONTROL: $(yaml-quote ${ADMISSION_CONTROL:-})
MASTER_IP_RANGE: $(yaml-quote ${MASTER_IP_RANGE})
ENABLE_HORIZONTAL_POD_AUTOSCALER: $(yaml-quote ${ENABLE_HORIZONTAL_POD_AUTOSCALER})
ENABLE_DEPLOYMENTS: $(yaml-quote ${ENABLE_DEPLOYMENTS})
RUNTIME_CONFIG: $(yaml-quote ${RUNTIME_CONFIG})
KUBERNETES_MASTER_NAME: $(yaml-quote ${MASTER_NAME})
KUBERNETES_CONTAINER_RUNTIME: $(yaml-quote ${CONTAINER_RUNTIME})
RKT_VERSION: $(yaml-quote ${RKT_VERSION})
CA_CERT: $(yaml-quote ${CA_CERT_BASE64})
MASTER_CERT: $(yaml-quote ${MASTER_CERT_BASE64:-})
MASTER_KEY: $(yaml-quote ${MASTER_KEY_BASE64:-})
KUBELET_CERT: $(yaml-quote ${KUBELET_CERT_BASE64:-})
KUBELET_KEY: $(yaml-quote ${KUBELET_KEY_BASE64:-})
KUBECFG_CERT: $(yaml-quote ${KUBECFG_CERT_BASE64:-})
KUBECFG_KEY: $(yaml-quote ${KUBECFG_KEY_BASE64:-})
KUBELET_APISERVER: $(yaml-quote ${KUBELET_APISERVER:-})
EOF
  else
    cat >>$file <<EOF
KUBERNETES_MASTER="false"
ENV_TIMESTAMP=$(date -u +%Y-%m-%dT%T%z)
INSTANCE_PREFIX=${INSTANCE_PREFIX}
NODE_INSTANCE_PREFIX=${NODE_INSTANCE_PREFIX}
SERVER_BINARY_TAR_URL=${SERVER_BINARY_TAR_URL}
SERVICE_CLUSTER_IP_RANGE=${SERVICE_CLUSTER_IP_RANGE}
ENABLE_CLUSTER_MONITORING=${ENABLE_CLUSTER_MONITORING:-none}
ENABLE_CLUSTER_LOGGING=${ENABLE_CLUSTER_LOGGING:-false}
ENABLE_CLUSTER_UI=${ENABLE_CLUSTER_UI:-false}
ENABLE_NODE_LOGGING=${ENABLE_NODE_LOGGING:-false}
LOGGING_DESTINATION=${LOGGING_DESTINATION:-}
ELASTICSEARCH_LOGGING_REPLICAS=${ELASTICSEARCH_LOGGING_REPLICAS:-}
ENABLE_CLUSTER_DNS=${ENABLE_CLUSTER_DNS:-false}
ENABLE_CLUSTER_REGISTRY=${ENABLE_CLUSTER_REGISTRY:-false}
DNS_REPLICAS=${DNS_REPLICAS:-}
DNS_SERVER_IP=${DNS_SERVER_IP:-}
DNS_DOMAIN=${DNS_DOMAIN:-}
KUBELET_TOKEN=${KUBELET_TOKEN:-}
KUBE_PROXY_TOKEN=${KUBE_PROXY_TOKEN:-}
ADMISSION_CONTROL=${ADMISSION_CONTROL:-}
MASTER_IP_RANGE=${MASTER_IP_RANGE}
KUBERNETES_MASTER_NAME=${MASTER_NAME}
ZONE=${ZONE}
EXTRA_DOCKER_OPTS=${EXTRA_DOCKER_OPTS:-}
PROJECT_ID=${PROJECT}
KUBERNETES_CONTAINER_RUNTIME=${CONTAINER_RUNTIME}
RKT_VERSION=${RKT_VERSION}
CA_CERT=${CA_CERT_BASE64}
KUBELET_CERT=${KUBELET_CERT_BASE64:-}
KUBELET_KEY=${KUBELET_KEY_BASE64:-}
EOF
  fi
}

# create-master-instance creates the master instance. If called with
# an argument, the argument is used as the name to a reserved IP
# address for the master. (In the case of upgrade/repair, we re-use
# the same IP.)
#
# It requires a whole slew of assumed variables, partially due to to
# the call to write-master-env. Listing them would be rather
# futile. Instead, we list the required calls to ensure any additional
# variables are set:
#   ensure-temp-dir
#   detect-project
#   get-bearer-token
#
# TODO(dawnchen): Convert master node to use coreos image too
function create-master-instance {
  local address_opt=""
  [[ -n ${1:-} ]] && address_opt="--address ${1}"

  write-master-env
  gcloud compute instances create "${MASTER_NAME}" \
    ${address_opt} \
    --project "${PROJECT}" \
    --zone "${ZONE}" \
    --machine-type "${MASTER_SIZE}" \
    --image-project="${MASTER_IMAGE_PROJECT}" \
    --image "${MASTER_IMAGE}" \
    --tags "${MASTER_TAG}" \
    --network "${NETWORK}" \
    --scopes "storage-ro,compute-rw,monitoring,logging-write" \
    --can-ip-forward \
    --metadata-from-file \
      "startup-script=${KUBE_ROOT}/cluster/gce/configure-vm.sh,kube-env=${KUBE_TEMP}/master-kube-env.yaml" \
    --disk "name=${MASTER_NAME}-pd,device-name=master-pd,mode=rw,boot=no,auto-delete=no"
}

# TODO(dawnchen): Check $CONTAINER_RUNTIME to decide which
# cloud_config yaml file should be passed
# TODO(zmerlynn): Make $1 required.
# TODO(zmerlynn): Document required vars (for this and call chain).
# $1 version
function create-node-instance-template {
  local suffix=""
  if [[ -n ${1:-} ]]; then
    suffix="-${1}"
  fi
   create-node-template "${NODE_INSTANCE_PREFIX}-template${suffix}" "${scope_flags}" \
    "kube-env=${KUBE_TEMP}/node-kube-env.yaml" \
    "user-data=${KUBE_ROOT}/cluster/gce/coreos/node.yaml"
}
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`#!/bin/bash`

Make copyright ownership statement generic Instead of saying "Google Inc." (which is not always correct) say "The Kubernetes Authors", which is generic. 2015-05-01 16:19:44 +00:00			`# Copyright 2015 The Kubernetes Authors All rights reserved.`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`

			`# A library of helper functions and constant for coreos os distro`

			`# $1: if 'true', we're building a master yaml, else a node`
			`function build-kube-env {`
			`local master=$1`
			`local file=$2`

			`rm -f ${file}`
			`# TODO(dawnchen): master node is still running with debian image`
			`if [[ "${master}" == "true" ]]; then`
			`cat >$file <<EOF`
Add an explicit KUBERNETES_MASTER variable to the kube-env. 2015-05-27 21:47:12 +00:00			`KUBERNETES_MASTER: "true"`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`ENV_TIMESTAMP: $(yaml-quote $(date -u +%Y-%m-%dT%T%z))`
			`INSTANCE_PREFIX: $(yaml-quote ${INSTANCE_PREFIX})`
			`NODE_INSTANCE_PREFIX: $(yaml-quote ${NODE_INSTANCE_PREFIX})`
Remove restriction that cluster-cidr be a class-b 2015-05-06 21:48:45 +00:00			`CLUSTER_IP_RANGE: $(yaml-quote ${CLUSTER_IP_RANGE:-10.244.0.0/16})`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`SERVER_BINARY_TAR_URL: $(yaml-quote ${SERVER_BINARY_TAR_URL})`
Validate binaries downloaded from GCS: * Set SHA1 for Kubernetes server binary and Salt tar in kube-env. * Check SHA1 in configure-vm.sh. If the env variable isn't available, download the SHA1 from GCS and double check that. * Fixes a bug in the devel path where we were actually uploading the wrong sha1 to the bucket. Fixes #10021 2015-06-18 18:31:21 +00:00			`SERVER_BINARY_TAR_HASH: $(yaml-quote ${SERVER_BINARY_TAR_HASH})`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`SALT_TAR_URL: $(yaml-quote ${SALT_TAR_URL})`
Validate binaries downloaded from GCS: * Set SHA1 for Kubernetes server binary and Salt tar in kube-env. * Check SHA1 in configure-vm.sh. If the env variable isn't available, download the SHA1 from GCS and double check that. * Fixes a bug in the devel path where we were actually uploading the wrong sha1 to the bucket. Fixes #10021 2015-06-18 18:31:21 +00:00			`SALT_TAR_HASH: $(yaml-quote ${SALT_TAR_HASH})`
Rename PORTAL_NET all over 2015-05-24 05:17:55 +00:00			`SERVICE_CLUSTER_IP_RANGE: $(yaml-quote ${SERVICE_CLUSTER_IP_RANGE})`
Added flag to set cluster class B network address for pods, add flag to disable allocation CIDRs for Pods. Fixed synchornization bug in NodeController registerNodes(). 2015-04-28 15:02:45 +00:00			`ALLOCATE_NODE_CIDRS: $(yaml-quote ${ALLOCATE_NODE_CIDRS:-false})`
Enable Google Cloud Monitoring and Google Cloud Logging instead of Influxdb for Google Compute Engine deployments. 2015-05-04 23:49:28 +00:00			`ENABLE_CLUSTER_MONITORING: $(yaml-quote ${ENABLE_CLUSTER_MONITORING:-none})`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`ENABLE_CLUSTER_LOGGING: $(yaml-quote ${ENABLE_CLUSTER_LOGGING:-false})`
Made enabling Kube UI configurable 2015-07-23 18:30:53 +00:00			`ENABLE_CLUSTER_UI: $(yaml-quote ${ENABLE_CLUSTER_UI:-false})`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`ENABLE_NODE_LOGGING: $(yaml-quote ${ENABLE_NODE_LOGGING:-false})`
			`LOGGING_DESTINATION: $(yaml-quote ${LOGGING_DESTINATION:-})`
			`ELASTICSEARCH_LOGGING_REPLICAS: $(yaml-quote ${ELASTICSEARCH_LOGGING_REPLICAS:-})`
			`ENABLE_CLUSTER_DNS: $(yaml-quote ${ENABLE_CLUSTER_DNS:-false})`
Launch a cluster-local registry. This registry can be accessed through proxies that run on each node listening on port 5000. We send the proxy images to the nodes directly to avoid requests that hit the network during cluster launch. For now, we continue to pull the registry itself over the network, especially given its large size (we should be able to dramatically shrink the image). On GCE we create a PD and use that for storage, otherwise we use an emptyDir. The registry is not enabled outside of GCE. All communication is currently plain HTTP. In order to use SSL, we will need to be able to request a certificate/key from the apiserver signed by the apiserver's CA cert. 2015-07-27 18:50:31 +00:00			`ENABLE_CLUSTER_REGISTRY: $(yaml-quote ${ENABLE_CLUSTER_REGISTRY:-false})`
Add CLUSTER_REGISTER_DISK and CLUSTER_REGISTRY_DISK_SIZE to gce/coreos 2015-09-01 03:07:11 +00:00			`CLUSTER_REGISTRY_DISK: $(yaml-quote ${CLUSTER_REGISTRY_DISK})`
			`CLUSTER_REGISTRY_DISK_SIZE: $(yaml-quote ${CLUSTER_REGISTRY_DISK_SIZE})`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`DNS_REPLICAS: $(yaml-quote ${DNS_REPLICAS:-})`
			`DNS_SERVER_IP: $(yaml-quote ${DNS_SERVER_IP:-})`
			`DNS_DOMAIN: $(yaml-quote ${DNS_DOMAIN:-})`
			`KUBE_USER: $(yaml-quote ${KUBE_USER})`
			`KUBE_PASSWORD: $(yaml-quote ${KUBE_PASSWORD})`
			`KUBE_BEARER_TOKEN: $(yaml-quote ${KUBE_BEARER_TOKEN})`
			`KUBELET_TOKEN: $(yaml-quote ${KUBELET_TOKEN:-})`
			`KUBE_PROXY_TOKEN: $(yaml-quote ${KUBE_PROXY_TOKEN:-})`
			`ADMISSION_CONTROL: $(yaml-quote ${ADMISSION_CONTROL:-})`
			`MASTER_IP_RANGE: $(yaml-quote ${MASTER_IP_RANGE})`
Turning on pod autoscaler on GCE. Implemented optional turning on of pod autoscaler in kube-up script for GCE. 2015-09-11 10:03:41 +00:00			`ENABLE_HORIZONTAL_POD_AUTOSCALER: $(yaml-quote ${ENABLE_HORIZONTAL_POD_AUTOSCALER})`
Allow enabling deployment controller on GCE and GKE 2015-09-24 01:20:51 +00:00			`ENABLE_DEPLOYMENTS: $(yaml-quote ${ENABLE_DEPLOYMENTS})`
Turning on pod autoscaler on GCE. Implemented optional turning on of pod autoscaler in kube-up script for GCE. 2015-09-11 10:03:41 +00:00			`RUNTIME_CONFIG: $(yaml-quote ${RUNTIME_CONFIG})`
Fix minor typo that broke yaml format 2015-08-03 20:06:23 +00:00			`KUBERNETES_MASTER_NAME: $(yaml-quote ${MASTER_NAME})`
Provide container_runtime flag to Kubelet in CoreOS. 2015-05-01 23:45:33 +00:00			`KUBERNETES_CONTAINER_RUNTIME: $(yaml-quote ${CONTAINER_RUNTIME})`
cluster/gce/coreos: Make rkt version configuable. 2015-05-15 23:19:48 +00:00			`RKT_VERSION: $(yaml-quote ${RKT_VERSION})`
Static cert distribution for GCE. To make cert validation work, no longer use the fqdn for the master name on the node VMs. 2015-05-11 18:43:44 +00:00			`CA_CERT: $(yaml-quote ${CA_CERT_BASE64})`
			`MASTER_CERT: $(yaml-quote ${MASTER_CERT_BASE64:-})`
			`MASTER_KEY: $(yaml-quote ${MASTER_KEY_BASE64:-})`
Register the kubelet on the master node with an apiserver. This option is separated from the apiserver running locally on the master node so that it can be optionally enabled or disabled as needed. Also, fix the healthchecking configuration for the master components, which was previously only working by coincidence: If a kubelet doesn't register with a master, it never bothers to figure out what its local address is. In which case it ends up constructing a URL like http://:8080/healthz for the http probe. This happens to work on the master because all of the pods are using host networking and explicitly binding to 127.0.0.1. Once the kubelet is registered with the master and it determines the local node address, it tries to healthcheck on an address where the pod isn't listening and the kubelet periodically restarts each master component when the liveness probe fails. 2015-08-04 18:14:46 +00:00			`KUBELET_CERT: $(yaml-quote ${KUBELET_CERT_BASE64:-})`
			`KUBELET_KEY: $(yaml-quote ${KUBELET_KEY_BASE64:-})`
Static cert distribution for GCE. To make cert validation work, no longer use the fqdn for the master name on the node VMs. 2015-05-11 18:43:44 +00:00			`KUBECFG_CERT: $(yaml-quote ${KUBECFG_CERT_BASE64:-})`
			`KUBECFG_KEY: $(yaml-quote ${KUBECFG_KEY_BASE64:-})`
Register the kubelet on the master node with an apiserver. This option is separated from the apiserver running locally on the master node so that it can be optionally enabled or disabled as needed. Also, fix the healthchecking configuration for the master components, which was previously only working by coincidence: If a kubelet doesn't register with a master, it never bothers to figure out what its local address is. In which case it ends up constructing a URL like http://:8080/healthz for the http probe. This happens to work on the master because all of the pods are using host networking and explicitly binding to 127.0.0.1. Once the kubelet is registered with the master and it determines the local node address, it tries to healthcheck on an address where the pod isn't listening and the kubelet periodically restarts each master component when the liveness probe fails. 2015-08-04 18:14:46 +00:00			`KUBELET_APISERVER: $(yaml-quote ${KUBELET_APISERVER:-})`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`EOF`
			`else`
			`cat >>$file <<EOF`
change coreos node env file from yaml to KEY=VALUE 2015-08-15 13:52:48 +00:00			`KUBERNETES_MASTER="false"`
			`ENV_TIMESTAMP=$(date -u +%Y-%m-%dT%T%z)`
			`INSTANCE_PREFIX=${INSTANCE_PREFIX}`
			`NODE_INSTANCE_PREFIX=${NODE_INSTANCE_PREFIX}`
			`SERVER_BINARY_TAR_URL=${SERVER_BINARY_TAR_URL}`
			`SERVICE_CLUSTER_IP_RANGE=${SERVICE_CLUSTER_IP_RANGE}`
			`ENABLE_CLUSTER_MONITORING=${ENABLE_CLUSTER_MONITORING:-none}`
			`ENABLE_CLUSTER_LOGGING=${ENABLE_CLUSTER_LOGGING:-false}`
			`ENABLE_CLUSTER_UI=${ENABLE_CLUSTER_UI:-false}`
			`ENABLE_NODE_LOGGING=${ENABLE_NODE_LOGGING:-false}`
			`LOGGING_DESTINATION=${LOGGING_DESTINATION:-}`
			`ELASTICSEARCH_LOGGING_REPLICAS=${ELASTICSEARCH_LOGGING_REPLICAS:-}`
			`ENABLE_CLUSTER_DNS=${ENABLE_CLUSTER_DNS:-false}`
Add CLUSTER_REGISTER_DISK and CLUSTER_REGISTRY_DISK_SIZE to gce/coreos 2015-09-01 03:07:11 +00:00			`ENABLE_CLUSTER_REGISTRY=${ENABLE_CLUSTER_REGISTRY:-false}`
change coreos node env file from yaml to KEY=VALUE 2015-08-15 13:52:48 +00:00			`DNS_REPLICAS=${DNS_REPLICAS:-}`
			`DNS_SERVER_IP=${DNS_SERVER_IP:-}`
			`DNS_DOMAIN=${DNS_DOMAIN:-}`
			`KUBELET_TOKEN=${KUBELET_TOKEN:-}`
			`KUBE_PROXY_TOKEN=${KUBE_PROXY_TOKEN:-}`
			`ADMISSION_CONTROL=${ADMISSION_CONTROL:-}`
Revert "Make MASTER_IP_RANGE master-only" 2015-08-27 08:52:21 +00:00			`MASTER_IP_RANGE=${MASTER_IP_RANGE}`
change coreos node env file from yaml to KEY=VALUE 2015-08-15 13:52:48 +00:00			`KUBERNETES_MASTER_NAME=${MASTER_NAME}`
			`ZONE=${ZONE}`
			`EXTRA_DOCKER_OPTS=${EXTRA_DOCKER_OPTS:-}`
			`PROJECT_ID=${PROJECT}`
			`KUBERNETES_CONTAINER_RUNTIME=${CONTAINER_RUNTIME}`
			`RKT_VERSION=${RKT_VERSION}`
			`CA_CERT=${CA_CERT_BASE64}`
			`KUBELET_CERT=${KUBELET_CERT_BASE64:-}`
			`KUBELET_KEY=${KUBELET_KEY_BASE64:-}`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`EOF`
			`fi`
			`}`

			`# create-master-instance creates the master instance. If called with`
			`# an argument, the argument is used as the name to a reserved IP`
			`# address for the master. (In the case of upgrade/repair, we re-use`
			`# the same IP.)`
			`#`
			`# It requires a whole slew of assumed variables, partially due to to`
			`# the call to write-master-env. Listing them would be rather`
			`# futile. Instead, we list the required calls to ensure any additional`
			`# variables are set:`
			`# ensure-temp-dir`
			`# detect-project`
			`# get-bearer-token`
			`#`
			`# TODO(dawnchen): Convert master node to use coreos image too`
			`function create-master-instance {`
			`local address_opt=""`
			`[[ -n ${1:-} ]] && address_opt="--address ${1}"`

			`write-master-env`
			`gcloud compute instances create "${MASTER_NAME}" \`
			`${address_opt} \`
			`--project "${PROJECT}" \`
			`--zone "${ZONE}" \`
			`--machine-type "${MASTER_SIZE}" \`
			`--image-project="${MASTER_IMAGE_PROJECT}" \`
			`--image "${MASTER_IMAGE}" \`
			`--tags "${MASTER_TAG}" \`
			`--network "${NETWORK}" \`
Added GCM support for Initial Resources plugin 2015-09-17 15:01:54 +00:00			`--scopes "storage-ro,compute-rw,monitoring,logging-write" \`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`--can-ip-forward \`
			`--metadata-from-file \`
Pass arg lists to gcloud as comma-separated single arg This should get rid of the scary warning messages on GCE up. Fixes #8117 2015-05-23 04:07:09 +00:00			`"startup-script=${KUBE_ROOT}/cluster/gce/configure-vm.sh,kube-env=${KUBE_TEMP}/master-kube-env.yaml" \`
			`--disk "name=${MASTER_NAME}-pd,device-name=master-pd,mode=rw,boot=no,auto-delete=no"`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`}`

			`# TODO(dawnchen): Check $CONTAINER_RUNTIME to decide which`
			`# cloud_config yaml file should be passed`
Pass mbforbes TODOs to others. 2015-08-26 17:05:34 +00:00			`# TODO(zmerlynn): Make $1 required.`
			`# TODO(zmerlynn): Document required vars (for this and call chain).`
Rolling node upgrade 2015-05-08 00:41:22 +00:00			`# $1 version`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`function create-node-instance-template {`
Rolling node upgrade 2015-05-08 00:41:22 +00:00			`local suffix=""`
			`if [[ -n ${1:-} ]]; then`
			`suffix="-${1}"`
			`fi`
change shell var MINION_SCOPES to user setable Because bash arrays may not be environment variables (see: <https://stackoverflow.com/questions/5564418/exporting-an-array-in-bash-script>) we have to change the MINION_SCOPES array to a string * prefers aliases instead of full URLs for scopes tested under GKE, needs GCE testing Close #10458 2015-06-29 23:47:36 +00:00			`create-node-template "${NODE_INSTANCE_PREFIX}-template${suffix}" "${scope_flags}" \`
Bring up a cluster using coreos image for worker nodes. 2015-04-28 15:50:43 +00:00			`"kube-env=${KUBE_TEMP}/node-kube-env.yaml" \`
			`"user-data=${KUBE_ROOT}/cluster/gce/coreos/node.yaml"`
			`}`