Commit Graph

1361 Commits (b8f101fd892b200054f61bd9f92401f92b1389a1)

Author SHA1 Message Date
Darren Shepherd ff34c5c5cf Download cert/key to agent with single HTTP request
Since generated cert/keys are stored locally, each server has a different
copy.  In a HA setup we need to ensure we download the cert and key from
the same server so we combined HTTP requests to do that.
2019-11-15 21:51:51 -07:00
Erik Wilson 95ff805c98 Fix broken K3S_TOKEN env 2019-11-14 12:42:42 -07:00
Darren Shepherd 77703b90ff Don't ever change 10252/10251 ports
Kubernetes componentstatus check is hardcoded to 10252 and 10251
so we should never change these ports.  If you do componentstatus
will return error.
2019-11-13 18:20:57 -07:00
Erik Wilson d4151b7739 Add the --with-node-id flag to agent 2019-11-13 16:13:41 -07:00
Erik Wilson 670d4b4162
Merge pull request #914 from erikwilson/validation-utilities
Add check-config for system validation
2019-11-13 09:00:08 -07:00
Erik Wilson a73f8b1773 Update check-config.sh for k3s 2019-11-13 08:34:24 -07:00
Darren Shepherd 9a4df7c05c
Merge pull request #1058 from ibuildthecloud/master
Update kine/dynamiclistener
2019-11-13 15:31:48 +00:00
Darren Shepherd 6063317144 Add a couple more known SANs 2019-11-13 06:05:31 +00:00
Erik Wilson e4b3730fa2 Go DNS lookup order hack 2019-11-12 20:16:31 -07:00
Erik Wilson d383d1b47e
Merge pull request #1054 from erikwilson/sort-deployments
Use lexical (sorted) order for file deployments
2019-11-12 16:51:24 -07:00
Erik Wilson b298733b3f Use lexical (sorted) order for file deployments 2019-11-12 16:05:09 -07:00
Erik Wilson 55c05ac500 Refactor node password location 2019-11-12 15:30:34 -07:00
Erik Wilson eff502342a Fix node-passwd on upgrade missing 3 columns 2019-11-12 13:16:05 -07:00
Darren Shepherd 3e213d1347 Allow --debug to be set with K3S_DEBUG env var 2019-11-12 08:22:48 +00:00
Darren Shepherd 668fcf7e83 Fix broken --cluster-reset 2019-11-12 01:12:24 +00:00
Darren Shepherd b2439788d7 Reduce logging in dqlite 2019-11-12 01:12:24 +00:00
Darren Shepherd 0ae20eb7a3 Support both http and db based bootstrap 2019-11-12 01:12:24 +00:00
Darren Shepherd 3f5fb70116 Move server arguments to experimental for dqlite related 2019-11-12 01:12:24 +00:00
Darren Shepherd 29b270dce6 Wait for apiserver to be health, not just running 2019-11-12 01:09:33 +00:00
Darren Shepherd e2431bdf9d Add dqlite support 2019-11-10 03:49:56 +00:00
Darren Shepherd 53d3ab074c Shrink k3s wrapper binary 2019-11-08 21:35:58 +00:00
Darren Shepherd 91cacb3a14 Fix server join issues 2019-11-08 21:35:58 +00:00
Erik Wilson e9a11c7cc4 Update generated code 2019-11-05 14:34:09 -07:00
Erik Wilson 47a94637dc Move metrics-server manifests to sub-directory 2019-11-05 14:30:50 -07:00
Erik Wilson 01f6e0e64e Add context to server daemon functions that wait 2019-11-05 11:06:07 -07:00
larmog 7aa3d08385 Wait for api-server to report version after starting 2019-11-05 11:05:22 -07:00
Erik Wilson c4eb6ea3ef Update generated data 2019-11-05 10:11:21 -07:00
Erik Wilson 0fef39de65 Add default multi-arch metrics-server deployment 2019-11-05 10:11:08 -07:00
Erik Wilson 931f63073f
Merge pull request #899 from mrueg/coredns-ready
coredns: Add readinessProbe
2019-11-04 14:25:45 -07:00
Erik Wilson 2bbc356f65
Merge pull request #1008 from erikwilson/ip6-system-setup
Improve ip6 system setup & utilities
2019-11-04 14:24:55 -07:00
Erik Wilson afa9422ad9 Improve ip6 system setup & utilities 2019-11-04 11:35:14 -07:00
Darren Shepherd 609c5e5f51 Update generated code 2019-10-30 19:08:26 -07:00
Darren Shepherd ba240d0611 Refactor tokens, bootstrap, and cli args 2019-10-30 19:06:49 -07:00
Manuel Rüger e8ca18ab2b coredns: Add readinessProbe 2019-10-29 11:51:36 +01:00
Erik Wilson 8a8fa8a351 Update go generated data 2019-10-28 16:10:36 -07:00
YAMAMOTO Takashi 4970d6133f Propagate DisableAgent flag
The recent setMasterRoleLabel stuff uses it.
2019-10-28 14:43:53 +09:00
Erik Wilson f648a64ee3
Merge pull request #923 from AkihiroSuda/fix-rootless-kubelet-flags
rootless: add kubelet flags automatically
2019-10-25 01:40:06 -07:00
Akihiro Suda aafccdbccb rootless: add kubelet flags automatically
Fix https://github.com/rancher/k3s/issues/784

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-10-25 17:10:14 +09:00
Erik Wilson ad4ea681ce Hide the --disable-agent flag 2019-10-24 21:51:58 -07:00
Erik Wilson 1cd3786a6a
Merge pull request #952 from btashton/bump-klipper-lb
Bump klipper-lb version
2019-10-24 21:30:06 -07:00
Brennan Ashton af7dc09f5c Bump klipper-lb version
Signed-off-by: Brennan Ashton <brennana@jfrog.com>
2019-10-24 14:01:47 -07:00
Erik Wilson aed163b338 Remove trailing whitespace trimming from containerd template 2019-10-23 08:02:07 -07:00
Erik Wilson 2ff2baba49
Merge pull request #913 from erikwilson/kube-router-network-policy
Add network policy support
2019-10-18 16:14:18 -07:00
Erik Wilson da3a7c6bbc Add network policy controller 2019-10-18 16:11:42 -07:00
Erik Wilson 1df72d14b8 Cleanup containerd config template spacing 2019-10-18 12:34:27 -07:00
Erik Wilson 90df4a1921 Use containerd-shim-run-v2 2019-10-18 12:34:27 -07:00
Erik Wilson 12307a4a69 Fallback to /etc/strongswan for config
Needed for docker image
2019-10-17 22:38:48 -07:00
Darren Shepherd 30c14a4db6
Merge pull request #901 from erikwilson/default-kubelet-dir
Use default kubelet directory
2019-10-17 16:49:11 -07:00
Erik Wilson 0ee586c233
Merge pull request #894 from galal-hussein/fix_master_label_ha
Fix Master label in HA setups
2019-10-16 16:31:12 -07:00
Erik Wilson 265181715a
Merge pull request #892 from iwilltry42/master
[Enhancement] include subdirectories for auto-deploy manifests
2019-10-16 16:30:35 -07:00
Erik Wilson 9e14d3e470
Merge pull request #851 from MagnaXSoftware/switch-string-slice
Add comma-separated no-deploy values
2019-10-16 16:00:46 -07:00
galal-hussein 7c60285435 Fix master role label in ha setups 2019-10-16 21:55:40 +02:00
Xavier Landreville 2f4a08c54d Add comma-separated no-deploy values
This allows no-deploy values to be either specified as multiple --no-deploy invocations,
or a single invocation with comma-separated values.
2019-10-16 15:51:04 -04:00
galal-hussein d2c1f66496 Add k3s cloud provider 2019-10-16 21:13:15 +02:00
Erik Wilson c72ef62d2c Use default kubelet directory 2019-10-15 10:47:03 -07:00
Thorsten Klein 50017c39a2 include subdirectories for auto-deploy manifests 2019-10-11 12:59:37 +02:00
Erik Wilson c12d2a1aea
Merge pull request #867 from galal-hussein/private_reg
Add private registry support to containerd
2019-10-10 14:35:37 -07:00
galal-hussein 436ff4ef63 fix cert rotation function 2019-10-10 03:35:32 +02:00
galal-hussein 5ccc880ddb Add private registry to containerd 2019-10-08 01:54:53 +02:00
Erik Wilson cac41db0e1
Merge pull request #816 from galal-hussein/default_local_storage
Add default storage class
2019-10-01 14:09:24 -07:00
galal-hussein 2dc5ba5bae Add certificate rotation 2019-09-30 18:34:58 +02:00
galal-hussein 56e0e5ad7e Add default local storage provisioner 2019-09-30 18:17:33 +02:00
Erik Wilson 6f7a1a70fa Label new flannel flags as experimental 2019-09-27 18:33:05 -07:00
Erik Wilson 0af32bba75 Use newest flannel API 2019-09-27 18:33:05 -07:00
Erik Wilson 999e40d6d3 Add strongswan utilities for ipsec 2019-09-27 18:26:39 -07:00
Erik Wilson 959acf9c92 Add --flannel-backend flag 2019-09-27 18:26:39 -07:00
Erik Wilson 359a77939c Enable hairpin mode 2019-09-27 18:26:39 -07:00
Erik Wilson 36fa425d45 Enable extension and ipsec flannel backends 2019-09-27 18:26:39 -07:00
Erik Wilson 3cd807a657 Add --flannel-conf flag 2019-09-27 18:26:39 -07:00
Darren Shepherd 8dcc09f7be Update generated code 2019-09-27 16:54:37 -07:00
galal-hussein b1891f445b Add master role label on startup 2019-09-27 23:04:24 +02:00
Erik Wilson db9540aa10 Bump CoreDNS to v1.6.3 2019-09-18 17:11:04 -07:00
Darren Shepherd 36ca606073
Merge pull request #793 from yamt/noderestriction
Add back NodeRestriction
2019-09-07 12:07:01 -07:00
Darren Shepherd df1f4551cb Update generated code 2019-09-05 15:16:44 -07:00
YAMAMOTO Takashi 9cf80eacd9 Add back NodeRestriction
It has been removed as a part of #764 for no obvious reasons.

Fix #791
2019-09-05 15:47:46 +09:00
Erik Wilson 197985c673 Add --kubelet-certificate-authority flag 2019-09-02 10:49:23 -07:00
Darren Shepherd 209acb58c1 Revert CSI patch 2019-08-31 22:39:24 -07:00
Darren Shepherd 8f597ba168 Don't run leader elections on controllers when no leader election 2019-08-28 20:53:40 -07:00
Darren Shepherd f0382329a5 Drop openapi hack 2019-08-28 20:53:39 -07:00
Darren Shepherd f34329f4f1 Wrong import 2019-08-28 20:53:39 -07:00
Darren Shepherd f57dd13774 Default kube-apiserver to httpsport + 1 2019-08-28 20:53:38 -07:00
Darren Shepherd 9c8b95be9d Drop unneeded prometheus imports 2019-08-28 20:53:37 -07:00
Darren Shepherd a51a2eaaad Add anonymous-auth=false and remove NodeRestriction 2019-08-28 20:53:37 -07:00
Darren Shepherd b24f214a50 Update to new cri-api import 2019-08-28 20:53:36 -07:00
Manuel Zapf 50227ff894 bump traefik version to 1.7.14 (#769)
* bump traefik version
2019-08-28 20:21:07 -07:00
Erik Wilson a5238098d1
Merge pull request #752 from carlosedp/patch-1
Enable metrics endpoint to Traefik
2019-08-26 21:26:02 -07:00
Erik Wilson 5679cfafaf
Merge pull request #707 from ibuildthecloud/pr683
Integrate Kine
2019-08-26 09:25:37 -07:00
Darren Shepherd 2cb6f52339 Disable storing bootstrap information by default 2019-08-24 22:27:24 -07:00
Carlos Eduardo 993e6a1950 Enable metrics endpoint to Traefik 2019-08-22 19:42:58 -03:00
Erik Wilson e6067314c9 Localhost -> 127.0.0.1 2019-08-22 11:56:00 -07:00
galal-hussein 1ae0c540d7 Refactor bootstrap, move kine startup code to kine, integrate kine 2019-08-22 09:14:43 -07:00
Erik Wilson a76ca2e887 Remove hostname requirement in `/etc/hosts` 2019-08-21 22:56:20 -07:00
William Zhang 458cea6633 Update traefik to 1.7.12
Signed-off-by: William Zhang <warmchang@outlook.com>
2019-08-20 02:35:07 +00:00
Darren Shepherd 99716deb08
Merge pull request #705 from yamt/cg
Appease kubelet warnings on docker for mac
2019-08-15 17:13:14 -07:00
Darren Shepherd 63dfc168d7
Merge pull request #718 from erikwilson/log-update
Cleanup logging
2019-08-15 17:12:29 -07:00
William Zhang bdb8550638 🔧 jteeuwen/go-bindata --> go-bindata/go-bindata
Signed-off-by: William Zhang <warmchang@outlook.com>
2019-08-12 03:24:03 +00:00
Erik Wilson c849525a27
Merge pull request #722 from erikwilson/debug-lb-logs
Change load balancer logging to debug
2019-08-09 14:12:31 -07:00
Erik Wilson 98254a3412 Change load balancer logging to debug 2019-08-08 10:48:11 -07:00
Erik Wilson 30e050a692 Cleanup logging 2019-08-07 22:45:54 -07:00
Erik Wilson 3c342e22a6 Fix panic in node controller 2019-08-06 10:42:42 -07:00
YAMAMOTO Takashi fc8eddae29 Appease kubelet warnings on docker for mac
On my environment, the name=systemd entry in /proc/self/cgroup
looks like:

	13:name=systemd:/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499

Kubelet periodically complains like:

	E0802 06:42:52.667123       1 summary_sys_containers.go:47] Failed to get system container stats for "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy": failed to get cgroup stats for "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy": failed to get container info for "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy": unknown container "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy"
2019-08-02 16:22:51 +09:00
Erik Wilson c170115c54
Merge pull request #676 from erikwilson/go-proxy
Add go load-balancing proxy
2019-08-01 16:03:41 -07:00
Erik Wilson 5deef13086
Merge pull request #687 from yamt/cacerts
Simplify startWrangler a bit
2019-08-01 16:01:42 -07:00
Erik Wilson be0cc6e943
Merge pull request #690 from erikwilson/regenerate-certs-on-ca-change
Regenerate server certs if CA changed
2019-08-01 15:59:54 -07:00
Erik Wilson 739e4214bd
Merge pull request #693 from yamt/insecure-bootstrap
Fix bootstrap with non-tls etcd
2019-07-31 14:18:35 -07:00
Erik Wilson 506d8cdcc3
Merge pull request #691 from erikwilson/early-return-routes
Fix missing early returns on routes
2019-07-31 14:12:09 -07:00
YAMAMOTO Takashi d78701acb1 Fix bootstrap with non-tls etcd 2019-07-31 16:14:13 +09:00
Erik Wilson fdb997b4ee Fix missing early returns on routes 2019-07-30 15:44:34 -07:00
Erik Wilson a74d9e5282 Regenerate server certs if CA changed 2019-07-30 14:55:25 -07:00
Erik Wilson a17e336993 Use go tcpproxy 2019-07-30 09:53:15 -07:00
YAMAMOTO Takashi 88e668cf6f Simplify startWrangler a bit
We no longer make dynamiclistener generate CA certs.
2019-07-30 10:16:45 +09:00
YAMAMOTO Takashi 07eeb56d81 Remove pkg/proxy which is no longer used 2019-07-29 12:49:13 +09:00
YAMAMOTO Takashi 35d972fd72 Sort args to make log outputs a bit more deterministic 2019-07-24 13:16:41 +09:00
Erik Wilson 1833b65fcd
Merge pull request #647 from yamt/remove-proxy-port
Remove agent proxy config which is no longer used
2019-07-23 15:51:51 -07:00
Erik Wilson e1162c7cfa Update agent to notify systemd 2019-07-18 06:40:39 -07:00
Erik Wilson 8ce509ee6b Cleanup tunnel logs 2019-07-18 05:00:07 -07:00
Erik Wilson 23b0797578 Add context to tunnel connect 2019-07-17 18:15:15 -07:00
Erik Wilson b93b4732eb Start endpoint tunnel watch before waiting 2019-07-17 17:13:40 -07:00
Erik Wilson 2d32337334
Merge pull request #650 from erikwilson/update-bootstrap
Bootstrap node key files & fix permissions
2019-07-17 14:22:05 -07:00
Erik Wilson 2f4d2838ea Bootstrap node key files & fix permissions 2019-07-17 13:57:33 -07:00
YAMAMOTO Takashi dc4ebd4c67 Remove agent proxy config which is no longer used 2019-07-17 18:05:16 +09:00
YAMAMOTO Takashi f6a04ea995 Add a few comments in bootstrap.go 2019-07-17 16:25:34 +09:00
Erik Wilson f6701bbe99
Merge pull request #634 from erikwilson/enforce-type-on-bootstrap
Enforce explicit read or write for bootstrap
2019-07-14 00:52:37 -07:00
Erik Wilson fdc1427317 Add more logs for bootstrap 2019-07-14 00:49:08 -07:00
Erik Wilson e77dc568bb Cleanup tunnel 2019-07-14 00:29:21 -07:00
Erik Wilson 34fc4d0336
Merge pull request #629 from erikwilson/update-remotedialer
Update remotedialer & tunnel logs
2019-07-12 16:22:10 -07:00
Erik Wilson 131f3bec44
Merge pull request #619 from erikwilson/node-ip-from-flannel-iface
Default node-ip from flannel-iface
2019-07-12 16:21:05 -07:00
Erik Wilson e79fda96d2 Enforce explicit read or write for bootstrap 2019-07-12 16:18:53 -07:00
Erik Wilson a1ce08d4f1 Default node-ip from flannel-iface 2019-07-12 15:46:36 -07:00
Erik Wilson 7e6664b684 Add resource version to tunnel endpoint watch 2019-07-12 15:38:49 -07:00
Erik Wilson 034a863696 Cleanup remotedialer tunnel logs 2019-07-12 15:38:49 -07:00
Erik Wilson 403e73ab1c
Merge pull request #633 from ibuildthecloud/wrangler
Update wrangler
2019-07-12 11:11:36 -07:00
Darren Shepherd 37a60b18ca Update wrangler 2019-07-12 10:21:15 -07:00
Darren Shepherd dbb7b04c3d Add option to disable scheduler 2019-07-12 09:59:03 -07:00
Erik Wilson 185a8dca13
Merge pull request #615 from erikwilson/master
Use watch-cache for kvsql
2019-07-07 14:46:08 -07:00
Erik Wilson ad11ba583f Use watch-cache for kvsql 2019-07-07 14:43:43 -07:00
Erik Wilson c32e6469a8 Revert "Merge pull request #607 from dramich/mockgen"
This reverts commit cb306b9378, reversing
changes made to ebb12c74c6.
2019-07-07 14:41:19 -07:00
Erik Wilson e0212144e8 Tunnel agent to all servers
Watch the kubernetes endpoints to create a tunnel to all servers.
2019-07-03 13:11:54 -07:00
Dan Ramich 3d50502cae Generated changes 2019-07-02 15:52:42 -07:00
Dan Ramich 760dd6b655 Disable mock generation 2019-07-02 15:36:43 -07:00
Erik Wilson 11a4c71f28 Use watch-cache for etcd3 backend 2019-07-01 14:09:25 -07:00
Erik Wilson 853708c8ba
Merge pull request #591 from erikwilson/add-ctr
Build & enable ctr with k3s server
2019-06-30 13:06:00 -07:00
Erik Wilson 24b73403c7 Cleanup bootstrap 2019-06-30 12:39:54 -07:00
Erik Wilson ed72856d27 Build & enable ctr with k3s server 2019-06-30 09:30:25 -07:00
Erik Wilson 8d979d675e Add tls support for etcd cert storage backend 2019-06-30 08:28:42 -07:00
Erik Wilson 4b540f8d94 Cleanup command help text 2019-06-28 18:18:03 -07:00
galal-hussein 37582b6fac Add cert storage backend flag 2019-06-28 20:47:21 +02:00
galal-hussein 28d9d83be2 Add k3s HA bootstrap 2019-06-27 21:00:43 +02:00
Erik Wilson 7090a7d551 Move node password to separate file 2019-06-25 15:04:04 -07:00
Erik Wilson 29865fd9c9 Remove agent proxy 2019-06-25 15:04:04 -07:00
Erik Wilson c9b62c9a90 Remove CA Certs/Key from listenerconfig storage 2019-06-25 15:04:04 -07:00
Erik Wilson 93f6690f26 Graceful upgrade token to server CA 2019-06-25 15:04:04 -07:00
Erik Wilson 1e035820bf Generated data 2019-06-25 15:04:04 -07:00
Erik Wilson 2c9444399b Refactor certs 2019-06-25 15:04:04 -07:00
Darren Shepherd 30c3c42f93 Add missing ConfigMap cache to helm apply 2019-06-19 13:32:14 -07:00
galal-hussein 94b5a22dda Disable the svclb controller nodeploy for svclb is passed 2019-06-18 23:05:16 +02:00
Darren Shepherd e0d2bd3e2d Merge branch 'pr505' 2019-06-14 13:28:19 -07:00
Darren Shepherd 9f4e43fea6
Merge pull request #506 from AkihiroSuda/bump-up-rootlesskit
rootless: use built-in port driver
2019-06-14 13:23:14 -07:00
Erik Wilson 2b44679352 Generated data 2019-06-14 09:37:59 -07:00
galal-hussein 17d8708ca5 Add storage backend flags 2019-06-12 00:48:47 +02:00
Akihiro Suda 5a51a8de45 rootless: use built-in port driver
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-05-29 15:01:38 +09:00
Akihiro Suda 490d6aefe0 rootless: fix mounting /var/lib/cni
k3s was unable to start up when /var/lib/cni is missing on the host.

Fix https://github.com/rancher/k3s/issues/470

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-05-29 14:04:28 +09:00
Erik Wilson 199f673676
Merge pull request #479 from galal-hussein/add_storage_backend_options
Add MySQL and Postgress support
2019-05-28 16:57:38 -07:00
Darren Shepherd 7ee554013a Update generated code 2019-05-26 22:35:57 -07:00
Darren Shepherd d94a346a1e Switch to wrangler-api and helm-controller 2019-05-26 22:32:24 -07:00
Darren Shepherd c0702b0492 Port to wrangler 2019-05-26 22:28:50 -07:00
Darren Shepherd 16f7aaab66 Update vendor 2019-05-25 23:44:33 -07:00
Darren Shepherd 4b4dd1b59b
Merge pull request #454 from galal-hussein/node_labels_taints
Expose node labels and taints and add node roles
2019-05-25 00:39:55 +02:00
Darren Shepherd a999cd43aa
Merge pull request #459 from galal-hussein/check_time
Check if server time before 1/1/1970
2019-05-25 00:38:53 +02:00
Darren Shepherd 0c18c5a92a
Merge pull request #461 from galal-hussein/fix_alternate_kubeconfig
Create symlink for kubeconfig when --write-kubeconfig is selected
2019-05-25 00:38:18 +02:00
Darren Shepherd 06b1acb324
Merge pull request #460 from galal-hussein/kubeconfig_readable
change permissions of kubeconfig and issue warning with kubectl wrapper
2019-05-25 00:36:30 +02:00
galal-hussein e9cd8adbf6 Add Storage endpoint option 2019-05-16 01:05:24 +02:00
galal-hussein 4c6cf29e02 Create symlink for kubeconfig when --write-kubeconfig is selected 2019-05-10 21:08:28 +02:00
galal-hussein 483df6fd82 Check if server time before 1/1/1980
Check
2019-05-10 20:29:42 +02:00
Wenxuan Zhao f0f57c1e44
Allow using built-in modules
Signed-off-by: Wenxuan Zhao <viz@linux.com>
2019-05-09 12:23:33 -07:00
galal-hussein 36bab003a3 Make kubeconfig not world readable and issue warning with kubectl wrapper 2019-05-09 00:54:52 +02:00
galal-hussein 930093dfe9 Expose node labels and taints and add node roles 2019-05-08 01:47:07 +02:00
Erik Wilson b0e4228609
Merge pull request #434 from galal-hussein/add_no_proxy
Add no_proxy env to server
2019-05-03 15:20:13 -07:00
Erik Wilson f7376ad979
Update proxy environment for helm controller
Add lowercase no_proxy and all_proxy/ALL_PROXY to environment for helm
2019-05-03 11:10:42 -07:00
galal-hussein d9f958ceeb Add no_proxy environment to server 2019-05-03 19:44:30 +02:00
haokang.ke 52f845ec84 Make pause image configurable (#345) 2019-05-03 10:36:12 -07:00
Darren Shepherd ea94b1af77
Merge pull request #433 from erikwilson/fix-0.5.0-cert-upgrade-bug
Force upgrade of token node cert
2019-05-03 10:35:36 -07:00
Darren Shepherd 5c62dcbb4b
Merge pull request #435 from galal-hussein/svclb_upgrade
handle old service lb deployments
2019-05-03 10:34:12 -07:00
galal-hussein 1e33142f29 handle old service lb deployments 2019-05-03 14:51:02 +02:00
galal-hussein 5d8d9e610b Add timeout to hostname check 2019-05-03 14:41:08 +02:00
Erik Wilson d5ce19caae Force upgrade of token node cert 2019-05-02 16:22:42 -07:00
Darren Shepherd 4ec051d032
Merge pull request #422 from galal-hussein/use_cni_with_docker
Add cni plugin to kubelet if docker is used
2019-05-02 10:45:34 -07:00
Darren Shepherd 9005fd5176
Merge pull request #423 from galal-hussein/change_threshold
Change the stderr threshold for cli
2019-05-02 10:45:21 -07:00
galal-hussein 7e1699cda0 Check if hostname is resolvable before running agent 2019-05-01 22:54:05 +02:00
galal-hussein fae6df0df0 Change the stderr threshold for cli 2019-05-01 05:23:32 +02:00
galal-hussein 191ac9371a Add cni plugin to kubelet if docker is used 2019-04-30 22:12:02 +02:00
Darren Shepherd 2950e81c23
Merge pull request #371 from warmchang/nf_conntrack
🔧 modprobe nf_conntrack
2019-04-26 16:01:13 -07:00
Darren Shepherd 9db91d7de3
Merge pull request #369 from erikwilson/node-dns
Node DNS & cert registration
2019-04-26 16:00:31 -07:00
Darren Shepherd 875ba289de
Merge pull request #375 from galal-hussein/schedule_svclb
Add node selector to service loadbalancer controller
2019-04-26 15:58:33 -07:00
Darren Shepherd 50f405ddfd
Merge pull request #376 from galal-hussein/fix_kubeletarg
Fix extra argument with multiple =
2019-04-26 15:57:16 -07:00
Erik Wilson c9941895d6 Bind kubelet to all interfaces and use webhook auth 2019-04-26 15:02:30 -07:00
galal-hussein f293e14645 Use NodeSelector when node label is enabled 2019-04-26 20:20:11 +02:00
Erik Wilson 305b596745 Remove node OnCreate 2019-04-26 10:50:33 -07:00
William Zhang 22bd3a3ce7 🔧 nf_conntrack module
Signed-off-by: William Zhang <zhang.wanmin@zte.com.cn>
2019-04-26 08:55:48 +08:00
galal-hussein 72d2edc0cb Fix extra argument with multiple = 2019-04-25 22:49:03 +02:00
Darren Shepherd 9376c39adf
Merge pull request #381 from galal-hussein/containerd_tmpl
Add containerd config go template
2019-04-25 13:36:30 -07:00
galal-hussein bdf8a355e1 Add containerd config go template 2019-04-25 22:17:34 +02:00
Darren Shepherd 6a43f63c70
Merge pull request #388 from galal-hussein/pass_proxy_variable_to_helm
Add proxy env to helm controller
2019-04-25 11:33:26 -07:00
Erik Wilson f584197bba Save password as text file 2019-04-25 10:53:21 -07:00
galal-hussein b87684fcb9 Add proxy env to helm controller 2019-04-24 04:27:52 +02:00
Erik Wilson e64c0298f2 Add cert per-node password authentication 2019-04-23 11:02:35 -07:00
Erik Wilson 055a574fee Simplify DNS hosts creation 2019-04-22 16:13:16 -07:00
Erik Wilson 1b2db423de Add node name to node cert generation 2019-04-19 18:20:34 +00:00
Erik Wilson 37dd5cbfd2 Generated data 2019-04-17 22:44:46 +00:00
Erik Wilson 31cf2bc9ee Add coredns entries for nodes 2019-04-17 22:44:46 +00:00
galal-hussein c42ea5ec89 Skip any file with no yaml yml or json suffix 2019-04-18 00:13:11 +02:00
Darren Shepherd be24f837bb
Merge pull request #349 from erikwilson/missing-cgroup-pids-fix
Check for cgroup pids support
2019-04-15 15:52:07 -07:00
Erik Wilson 4bba04023d Check for cgroup pids support
If cgroup pids are not supported add a feature-gates flag
SupportPodPidsLimit=false for kubelet.
2019-04-15 22:26:50 +00:00
Darren Shepherd 0e3711b8b7
Merge pull request #339 from km4rcus/cluster-domain-option
Add --cluster-domain option
2019-04-15 10:06:07 -07:00
Darren Shepherd 08c3d0d4ef
Merge pull request #250 from yoink00/master
Allow flannel interface to be specified on the command line
2019-04-15 10:01:22 -07:00
Stuart Wallace 2268e028a2 Add ability to override flannel interface 2019-04-12 21:06:43 +01:00
Marco Mancini b445bad171 Add --cluster-domain option 2019-04-12 08:06:35 +02:00
galal-hussein e5d8d72e59 Fix comment of bind address 2019-04-12 02:30:49 +02:00
Erik Wilson c48739206a Enable aggregation layer
Configure kube-apiserver, kubelets, and kube-proxy for use with
aggregation layer in order for metrics-server deployment to function
correctly.
2019-04-11 22:43:31 +00:00
Darren Shepherd 046a817818 Add rootless support 2019-04-09 10:38:04 -07:00
galal-hussein 7794528aa1 Add extra flags for server and agent components 2019-04-09 08:20:38 +02:00
Darren Shepherd a11ac8cc40 Pull in parallel for CRI 2019-04-08 22:50:59 -07:00
Darren Shepherd 8010a24c91 Update generated code for k8s 1.14 2019-04-08 22:50:59 -07:00
Darren Shepherd 841f8d29e6 Ensure CSI is initialized properly when running agent and server combined 2019-04-08 22:50:59 -07:00
Darren Shepherd 3c7e103085 Updates for k8s 1.14 2019-04-08 22:50:59 -07:00
Darren Shepherd 9e80177443
Merge pull request #289 from galal-hussein/add_bind_address
Add bind address server config
2019-04-08 22:36:58 -07:00
galal-hussein e8c5b2498c Change address to bind-address for scheduler and api 2019-03-31 14:55:56 +02:00
galal-hussein d255574150 Add bind address server config 2019-03-31 02:10:23 +02:00
Erik Wilson bb14bcb595 Update generated data 2019-03-26 23:13:54 +00:00
Erik Wilson a4df9f4ab1 Kubelet resolv.conf DNS update
Allow the kubelet resolv-conf flag to be set, or automatically
discovered from /etc/resolv.conf & /run/systemd/resolve/resolv.conf if
no loopback devices are present, or create our own which points to
nameserver 8.8.8.8
2019-03-26 23:13:54 +00:00
Erik Wilson 1d61576e54 Fix linting issues 2019-03-25 16:04:29 -07:00
Darren Shepherd 4463408819
Merge pull request #239 from takmatsu/add-hosts
Add tls-san flag
2019-03-25 09:54:21 -07:00
Darren Shepherd 9a57e6fd0f
Merge pull request #257 from mortenlj/master
Skip writing manifest when using `--no-deploy`
2019-03-25 09:51:16 -07:00
Erik Wilson 2768f559c1 Fix go fmt error 2019-03-24 12:19:05 -07:00
Morten Lied Johansen 9033891f88 Skip writing manifest when using `--no-deploy`
Instead of skipping the manifest when listing the directory, we now skip
creating it in the first place. This allows users to deploy manifests
that replaces the ones bundled, without having to come up with a new
name.

Fixes #230.
2019-03-23 22:22:58 +01:00
Takeaki Matsumoto 3a6b305455 Change flag name and type 2019-03-23 17:34:55 +00:00
Erik Wilson 9645048a57 Update klipper-helm version 2019-03-22 06:05:26 +00:00
Erik Wilson 8d57fbd430 Change klipper-helm to PullIfNotPresent
PullAlways ImagePullPolicy causes issues with offline/airgap support,
so only pull if image is not already present.
2019-03-22 00:10:29 +00:00
Erik Wilson e75e5171af Generated bin data 2019-03-20 18:35:25 +00:00
Erik Wilson ffcc9c0c9c Package static assets
Include static Helm assets in the build process needed for air-gap
2019-03-20 18:35:25 +00:00
Erik Wilson 608f3a4e80 Serve static assets
Provide a static assets route for use with helm or other air-gap needs.
2019-03-20 00:24:27 +00:00
Takeaki Matsumoto 9551e1db21 Add advertise-address flag
In NAT or LB environment,
we need not just the certs for local ip, but also additional ips.
advertise-address flag enables to add optional ips.
2019-03-18 08:26:23 +00:00
Darren Shepherd 8649243d34
Merge pull request #229 from epicfilemcnulty/Skip-empty-yaml-objects
Do not process empty yaml objects (fixes #222)
2019-03-17 13:01:40 -07:00
Erik Wilson 7e1abf28f1 Short port names for service load balancer
If a port name is longer than 15 characters we are unable to create
the associated service load balancer containers. Use our own short
name of `lb-port-{port}` to avoid naming issues.

For rancher/k3s/issues/90
2019-03-14 18:53:00 +00:00
Vladimir Zorin d1348b9898 Trim whitespaces before checking if line is empty or comment 2019-03-14 14:12:02 +02:00
Vladimir Zorin 567532d74d Do not process empty yaml objects (fixes #222) 2019-03-14 13:36:26 +02:00
Darren Shepherd 2771ae1ba9
Merge pull request #184 from ibuildthecloud/default-ns
Assign default namespace if not set in manifests
2019-03-07 13:04:50 -07:00
Darren Shepherd 937b379605
Merge pull request #183 from ibuildthecloud/helm
Various helm fixes
2019-03-07 13:04:42 -07:00
Darren Shepherd 9a862610ac
Merge pull request #177 from erikwilson/systemd-notify
Enable systemd ready notification for k3s server
2019-03-07 13:04:34 -07:00
Darren Shepherd a649983228 Any change to helm chart values or values.yaml should upgrade 2019-03-07 13:01:21 -07:00
Darren Shepherd 769c1d5415 Fix manifest polling 2019-03-07 13:01:21 -07:00
Darren Shepherd bef4115657 Assign default namespace if not set in manifests 2019-03-07 13:00:35 -07:00
Darren Shepherd 6e28ede2f8 Fix containerd debug log env var 2019-03-07 11:20:58 -07:00
Darren Shepherd fe9a5b1601 Remove spurious error on start 2019-03-07 10:25:21 -07:00
Erik Wilson 107b5f3985 Enable systemd ready notification for k3s server
Disables k8s generic api server systemd ready notification and send
our own ready notification after server available and kubeconfig
available.

Make sure we unset the NOTIFY_SOCKET environment variable by passing
`true` to SdNotify so the agent can start containers.
2019-03-07 09:54:04 -07:00
Darren Shepherd 2f3da6af94
Merge pull request #175 from ldez/refactor/load-images
refactor: creates preloadImages function.
2019-03-07 09:46:27 -07:00
Fernandez Ludovic e59bd5d489 refactor: creates loadImages function. 2019-03-07 01:45:52 +01:00
Vladimir Zorin 392cfb1231 Add basic templating support for manifests 2019-03-07 01:22:55 +02:00
Vladimir Zorin 44cce9a76f Set ClusterDNS to ServiceCIDR network address + 10 when cluster-dns is not provided 2019-03-06 20:41:07 +02:00
Vladimir Zorin 7ad03ad8b0 Add cluster-dns server arg support 2019-03-06 13:16:04 +02:00
Vladimir Zorin b8c3ff1dab Add --service-cidr server arg support 2019-03-06 12:37:03 +02:00
Adam Liddell b430513abf Enforce lower case hostname for node, references #160 2019-03-05 18:34:24 +00:00
Darren Shepherd 4475456a83
Update pkg/agent/config/config.go
Co-Authored-By: juliens <julien.salleyron@gmail.com>
2019-03-04 23:23:17 +01:00
Julien Salleyron 164b89bce4 fix review. 2019-03-04 21:46:37 +01:00
Julien Salleyron 1895eec684 Preload images 2019-03-04 21:34:24 +01:00
Darren Shepherd 0414f97c78 Revert "Enable systemd ready notification for k3s server"
This reverts commit c73e9187bb.
2019-03-04 13:18:20 -07:00
Darren Shepherd 49d0f20e5b
Merge pull request #110 from ibuildthecloud/tokenfile
Add --token-file support
2019-03-04 10:13:31 -07:00
Darren Shepherd ef4e34b289 Remove dead code 2019-03-04 10:10:17 -07:00
Darren Shepherd 8acc17fcf3
Merge branch 'master' into tokenfile 2019-03-04 10:10:01 -07:00
Darren Shepherd 70e6ca4ab8 Support external CRI implementations 2019-03-04 10:08:12 -07:00
Darren Shepherd 3d113ceb2d Add agent command to server command 2019-03-04 10:08:12 -07:00
Darren Shepherd 964cebb070 Don't return object because double update might revert IP change 2019-03-04 10:08:03 -07:00
Thorsten Schifferdecker 2c398c5d5f Update server.go
fallback to the old --address part and enable the non-tls port to make healthz happy
2019-03-04 10:07:30 -07:00
Thorsten Schifferdecker 35cfc717d3 fix missing "," 2019-03-04 10:07:30 -07:00
Thorsten Schifferdecker ee2fffb0ca make the controller-manager and scheduler usable for the
componentstatus.
Fixes #126

Signed-off-by: Thorsten Schifferdecker <schifferdecker@b1-systems.de>
2019-03-04 10:07:30 -07:00
Darren Shepherd 91f9472751 Add traefik to no-deploy help text 2019-03-04 10:07:10 -07:00
Darren Shepherd fdb51c9f53 Cleanup docker cgroup errors in kubelet 2019-03-04 10:06:59 -07:00
Darren Shepherd e5b7d36c55 Actually pass cluster-cidr on to server 2019-03-04 10:06:37 -07:00
Darren Shepherd e28e497168 Add --token-file support 2019-03-01 17:07:55 -07:00
Erik Wilson c73e9187bb Enable systemd ready notification for k3s server
Disables k8s generic api server systemd ready notification and send
our own ready notification after server available and kubeconfig
available.
2019-03-01 10:47:34 -07:00
Sean Duffy 10f1553564 fix 'fannel' typo. 2019-02-28 10:30:45 -07:00
Darren Shepherd cb5e425457 Set /proc/sys/net/ipv4/ip_forward on agent start 2019-02-23 22:43:59 -07:00
Darren Shepherd 828ce5a24a Disable watch caching, not needed for sqlite 2019-02-22 19:58:42 -07:00
Darren Shepherd b07727ae24 Move default config location to /etc/rancher/k3s/k3s.yaml 2019-02-19 09:53:41 -08:00
Darren Shepherd 8690a277ed Fix ingress 2019-02-14 11:27:26 -07:00
Darren Shepherd 01b3bb315e Fix version printing on startup 2019-02-07 21:45:31 -07:00
Darren Shepherd 56fae079e5 Update generated code 2019-02-07 21:45:31 -07:00
Darren Shepherd b6f9045eca Retry 1000 times on helm failure 2019-02-07 21:45:31 -07:00
Darren Shepherd 91002f1fee Fix looping on startup while installing addons 2019-02-07 21:45:31 -07:00
Darren Shepherd 5e1ce4aa42 Cache self-signed loopback cert on startup 2019-02-07 21:45:31 -07:00
Darren Shepherd af96c908da Disable proxy hostname checks 2019-02-07 21:45:31 -07:00
Darren Shepherd 04c5567346 Validate that memory cgroup exists 2019-02-07 21:45:31 -07:00
Darren Shepherd 8bdd86198c Fix dest port so it's the same as src port 2019-02-07 21:45:31 -07:00
Darren Shepherd 529aa431d1 Adjust debug logging and write containerd logs to a file 2019-02-07 21:45:31 -07:00
Darren Shepherd 3df9155d02 Monitor endpoint changes to trigger service-lb 2019-02-07 21:45:31 -07:00
Darren Shepherd 793ac4fb89 Add crictl 2019-02-07 21:45:31 -07:00
Darren Shepherd 84756df8a2 Only run two service-lb if there are more than 1 nodes ready 2019-02-04 22:04:33 -07:00
Darren Shepherd bd269f8d3e Update generated code 2019-02-04 16:47:53 -07:00
Darren Shepherd 1d666d9515 Add helm controller 2019-02-04 16:47:53 -07:00
Darren Shepherd e832588662 Add embedded service load balancer 2019-02-04 16:47:53 -07:00
Darren Shepherd 400225e73d Prepopulate known IPs in TLS 2019-02-04 16:47:53 -07:00
Darren Shepherd 529e22ef80 Disable leader election for now 2019-02-04 16:47:53 -07:00
Darren Shepherd 1826084b24 Add ping handler 2019-02-04 16:47:53 -07:00
Darren Shepherd 1502ad2530 Package serialized version of openapi 2019-01-25 22:09:46 -07:00
Darren Shepherd 93841ffbcb Support kubectl symlink and avoid data in home dir 2019-01-25 22:09:46 -07:00
Darren Shepherd 3f2a951564 Ensure that br_netfilter module is loaded 2019-01-25 22:09:46 -07:00
Darren Shepherd 84b6c461b9 Fix go vet issue 2019-01-24 10:52:04 -07:00
Darren Shepherd 6fa7f5b3ae Clean up build scripts
Switch binaries to armhf suffix to be more clean on the on
architecture
2019-01-24 10:51:37 -07:00
Darren Shepherd 287e0f44c9 Prepare for initial release 2019-01-22 14:20:29 -07:00
Darren Shepherd 62c62cc7b4 Continued refactoring 2019-01-11 21:52:30 -07:00
Darren Shepherd 9bb7c27c62 Initial Commit 2019-01-01 01:23:01 -07:00