C12s/c12s-kubespray
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge pull request #2262 from tmjd/calico-canal-v2-6-7

Browse source 
Update Calico and Canal
This commit is contained in:
Brad Beam 2018-03-27 21:07:28 -05:00 committed by GitHub
commit 015ea62e92
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 34 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
roles/download/defaults/main.yml
View file

@ -29,11 +29,11 @@ kubeadm_version: "{{ kube_version }}"
etcd_version: v3.2.4 etcd_version: v3.2.4
# TODO(mattymo): Move calico versions to roles/network_plugins/calico/defaults # TODO(mattymo): Move calico versions to roles/network_plugins/calico/defaults
# after migration to container download # after migration to container download
calico_version: "v2.6.2" calico_version: "v2.6.8"
calico_ctl_version: "v1.6.1" calico_ctl_version: "v1.6.3"
calico_cni_version: "v1.11.0" calico_cni_version: "v1.11.4"
calico_policy_version: "v1.0.0" calico_policy_version: "v1.0.3"
calico_rr_version: "v0.4.0" calico_rr_version: "v0.4.2"
flannel_version: "v0.10.0" flannel_version: "v0.10.0"
flannel_cni_version: "v0.3.0" flannel_cni_version: "v0.3.0"
istio_version: "0.2.6" istio_version: "0.2.6"

8
roles/network_plugin/calico/templates/calico-node.yml.j2
View file

@ -28,6 +28,9 @@ spec:
tolerations: tolerations:
- effect: NoSchedule - effect: NoSchedule
operator: Exists operator: Exists
# Minimize downtime during a rolling upgrade or deletion; tell Kubernetes to do a "force
# deletion": https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods.
terminationGracePeriodSeconds: 0
containers: containers:
# Runs calico/node container on each Kubernetes node. This # Runs calico/node container on each Kubernetes node. This
# container programs network policy and routes on each # container programs network policy and routes on each
@ -53,6 +56,11 @@ spec:
configMapKeyRef: configMapKeyRef:
name: calico-config name: calico-config
key: cluster_type key: cluster_type
# Set noderef for node controller.
- name: CALICO_K8S_NODE_REF
valueFrom:
fieldRef:
fieldPath: spec.nodeName
# Disable file logging so `kubectl logs` works. # Disable file logging so `kubectl logs` works.
- name: CALICO_DISABLE_FILE_LOGGING - name: CALICO_DISABLE_FILE_LOGGING
value: "true" value: "true"

23
roles/network_plugin/canal/templates/canal-node.yaml.j2
View file

@ -148,14 +148,21 @@ spec:
name: canal-config name: canal-config
key: etcd_endpoints key: etcd_endpoints
# Disable Calico BGP. Calico is simply enforcing policy. # Disable Calico BGP. Calico is simply enforcing policy.
- name: CALICO_NETWORKING - name: CALICO_NETWORKING_BACKEND
value: "false" value: "none"
# Cluster type to identify the deployment type # Cluster type to identify the deployment type
- name: CLUSTER_TYPE - name: CLUSTER_TYPE
value: "kubespray,canal" value: "kubespray,canal"
# Disable file logging so `kubectl logs` works. # Disable file logging so `kubectl logs` works.
- name: CALICO_DISABLE_FILE_LOGGING - name: CALICO_DISABLE_FILE_LOGGING
value: "true" value: "true"
# Set noderef for node controller.
- name: CALICO_K8S_NODE_REF
valueFrom:
fieldRef:
fieldPath: spec.nodeName
- name: FELIX_HEALTHENABLED
value: "true"
# Etcd SSL vars # Etcd SSL vars
- name: ETCD_CA_CERT_FILE - name: ETCD_CA_CERT_FILE
valueFrom: valueFrom:
@ -178,6 +185,18 @@ spec:
fieldPath: spec.nodeName fieldPath: spec.nodeName
securityContext: securityContext:
privileged: true privileged: true
livenessProbe:
httpGet:
path: /liveness
port: 9099
periodSeconds: 10
initialDelaySeconds: 10
failureThreshold: 6
readinessProbe:
httpGet:
path: /readiness
port: 9099
periodSeconds: 10
volumeMounts: volumeMounts:
- mountPath: /lib/modules - mountPath: /lib/modules
name: lib-modules name: lib-modules