Fix flannel for 1.6 and apply fixes to enable containerized kubelet
This commit is contained in:
parent
9a0dd726ae
commit
655721268d
8 changed files with 27 additions and 33 deletions
|
@ -65,7 +65,8 @@
|
||||||
- {name: dnsmasq, file: dnsmasq-svc.yml, type: svc}
|
- {name: dnsmasq, file: dnsmasq-svc.yml, type: svc}
|
||||||
- {name: dnsmasq-autoscaler, file: dnsmasq-autoscaler.yml, type: deployment}
|
- {name: dnsmasq-autoscaler, file: dnsmasq-autoscaler.yml, type: deployment}
|
||||||
register: manifests
|
register: manifests
|
||||||
when: inventory_hostname == groups['kube-master'][0]
|
delegate_to: "{{ groups['kube-master'][0] }}"
|
||||||
|
run_once: true
|
||||||
|
|
||||||
- name: Start Resources
|
- name: Start Resources
|
||||||
kube:
|
kube:
|
||||||
|
@ -76,7 +77,8 @@
|
||||||
filename: "{{kube_config_dir}}/{{item.item.file}}"
|
filename: "{{kube_config_dir}}/{{item.item.file}}"
|
||||||
state: "{{item.changed | ternary('latest','present') }}"
|
state: "{{item.changed | ternary('latest','present') }}"
|
||||||
with_items: "{{ manifests.results }}"
|
with_items: "{{ manifests.results }}"
|
||||||
when: inventory_hostname == groups['kube-master'][0]
|
delegate_to: "{{ groups['kube-master'][0] }}"
|
||||||
|
run_once: true
|
||||||
|
|
||||||
- name: Check for dnsmasq port (pulling image and running container)
|
- name: Check for dnsmasq port (pulling image and running container)
|
||||||
wait_for:
|
wait_for:
|
||||||
|
|
|
@ -1,2 +1,3 @@
|
||||||
[Service]
|
[Service]
|
||||||
Environment="DOCKER_OPTS={% if docker_options is defined %}{{ docker_options }}{% endif %} --iptables={% if kube_network_plugin == 'flannel' %}true{% else %}false{% endif %}"
|
Environment="DOCKER_OPTS={{ docker_options | default('') }} \
|
||||||
|
--iptables={% if kube_network_plugin == 'flannel' %}true{% else %}false{% endif %}"
|
||||||
|
|
|
@ -13,9 +13,9 @@ spec:
|
||||||
app: netchecker-agent-hostnet
|
app: netchecker-agent-hostnet
|
||||||
spec:
|
spec:
|
||||||
hostNetwork: True
|
hostNetwork: True
|
||||||
{%- if kube_version | version_compare('v1.6', '>=') -%}
|
{% if kube_version | version_compare('v1.6', '>=') %}
|
||||||
dnsPolicy: ClusterFirstWithHostNet
|
dnsPolicy: ClusterFirstWithHostNet
|
||||||
{%- endif -%}
|
{% endif %}
|
||||||
containers:
|
containers:
|
||||||
- name: netchecker-agent
|
- name: netchecker-agent
|
||||||
image: "{{ agent_img }}"
|
image: "{{ agent_img }}"
|
||||||
|
|
|
@ -7,9 +7,9 @@ metadata:
|
||||||
k8s-app: kube-controller
|
k8s-app: kube-controller
|
||||||
spec:
|
spec:
|
||||||
hostNetwork: true
|
hostNetwork: true
|
||||||
{%- if kube_version | version_compare('v1.6', '>=') -%}
|
{% if kube_version | version_compare('v1.6', '>=') %}
|
||||||
dnsPolicy: ClusterFirstWithHostNet
|
dnsPolicy: ClusterFirstWithHostNet
|
||||||
{%- endif -%}
|
{% endif %}
|
||||||
containers:
|
containers:
|
||||||
- name: kube-controller-manager
|
- name: kube-controller-manager
|
||||||
image: {{ hyperkube_image_repo }}:{{ hyperkube_image_tag }}
|
image: {{ hyperkube_image_repo }}:{{ hyperkube_image_tag }}
|
||||||
|
|
|
@ -7,9 +7,9 @@ metadata:
|
||||||
k8s-app: kube-scheduler
|
k8s-app: kube-scheduler
|
||||||
spec:
|
spec:
|
||||||
hostNetwork: true
|
hostNetwork: true
|
||||||
{%- if kube_version | version_compare('v1.6', '>=') -%}
|
{% if kube_version | version_compare('v1.6', '>=') %}
|
||||||
dnsPolicy: ClusterFirstWithHostNet
|
dnsPolicy: ClusterFirstWithHostNet
|
||||||
{%- endif -%}
|
{% endif %}
|
||||||
containers:
|
containers:
|
||||||
- name: kube-scheduler
|
- name: kube-scheduler
|
||||||
image: {{ hyperkube_image_repo }}:{{ hyperkube_image_tag }}
|
image: {{ hyperkube_image_repo }}:{{ hyperkube_image_tag }}
|
||||||
|
|
|
@ -10,6 +10,14 @@ kube_proxy_mode: iptables
|
||||||
# policy engine.
|
# policy engine.
|
||||||
kube_proxy_masquerade_all: false
|
kube_proxy_masquerade_all: false
|
||||||
|
|
||||||
|
# These options reflect limitations of running kubelet in a container.
|
||||||
|
# Modify at your own risk
|
||||||
|
kubelet_enable_cri: false
|
||||||
|
kubelet_cgroups_per_qos: false
|
||||||
|
# Set to empty to avoid cgroup creation
|
||||||
|
kubelet_enforce_node_allocatable: ""
|
||||||
|
|
||||||
|
|
||||||
# Limits for kube components and nginx load balancer app
|
# Limits for kube components and nginx load balancer app
|
||||||
kubelet_memory_limit: 512M
|
kubelet_memory_limit: 512M
|
||||||
kubelet_cpu_limit: 100m
|
kubelet_cpu_limit: 100m
|
||||||
|
|
|
@ -12,7 +12,9 @@ KUBELET_HOSTNAME="--hostname-override={{ ansible_hostname }}"
|
||||||
{% set kubelet_args_base %}--pod-manifest-path={{ kube_manifest_dir }} \
|
{% set kubelet_args_base %}--pod-manifest-path={{ kube_manifest_dir }} \
|
||||||
--pod-infra-container-image={{ pod_infra_image_repo }}:{{ pod_infra_image_tag }} \
|
--pod-infra-container-image={{ pod_infra_image_repo }}:{{ pod_infra_image_tag }} \
|
||||||
--kube-reserved cpu={{ kubelet_cpu_limit }},memory={{ kubelet_memory_limit|regex_replace('Mi', 'M') }} \
|
--kube-reserved cpu={{ kubelet_cpu_limit }},memory={{ kubelet_memory_limit|regex_replace('Mi', 'M') }} \
|
||||||
--node-status-update-frequency={{ kubelet_status_update_frequency }}{% endset %}
|
--node-status-update-frequency={{ kubelet_status_update_frequency }} \
|
||||||
|
--enable-cri={{ kubelet_enable_cri }} --cgroups-per-qos={{ kubelet_cgroups_per_qos }} \
|
||||||
|
--enforce-node-allocatable='{{ kubelet_enforce_node_allocatable }}'{% endset %}
|
||||||
|
|
||||||
{# DNS settings for kubelet #}
|
{# DNS settings for kubelet #}
|
||||||
{% if dns_mode == 'kubedns' %}
|
{% if dns_mode == 'kubedns' %}
|
||||||
|
|
|
@ -4,9 +4,7 @@
|
||||||
- Preinstall | reload network
|
- Preinstall | reload network
|
||||||
- Preinstall | reload kubelet
|
- Preinstall | reload kubelet
|
||||||
- Preinstall | kube-controller configured
|
- Preinstall | kube-controller configured
|
||||||
- Preinstall | stop controller
|
- Preinstall | restart kube-controller-manager
|
||||||
- Preinstall | pause for controller
|
|
||||||
- Preinstall | restart controller
|
|
||||||
when: not ansible_os_family in ["CoreOS", "Container Linux by CoreOS"]
|
when: not ansible_os_family in ["CoreOS", "Container Linux by CoreOS"]
|
||||||
|
|
||||||
# FIXME(bogdando) https://github.com/projectcalico/felix/issues/1185
|
# FIXME(bogdando) https://github.com/projectcalico/felix/issues/1185
|
||||||
|
@ -38,9 +36,7 @@
|
||||||
state: restarted
|
state: restarted
|
||||||
notify:
|
notify:
|
||||||
- Preinstall | kube-controller configured
|
- Preinstall | kube-controller configured
|
||||||
- Preinstall | stop controller
|
- Preinstall | restart kube-controller-manager
|
||||||
- Preinstall | pause for controller
|
|
||||||
- Preinstall | restart controller
|
|
||||||
when: not dns_early|bool
|
when: not dns_early|bool
|
||||||
|
|
||||||
- name: Preinstall | kube-controller configured
|
- name: Preinstall | kube-controller configured
|
||||||
|
@ -48,21 +44,6 @@
|
||||||
register: kube_controller_set
|
register: kube_controller_set
|
||||||
when: inventory_hostname in groups['kube-master'] and dns_mode != 'none' and resolvconf_mode == 'host_resolvconf'
|
when: inventory_hostname in groups['kube-master'] and dns_mode != 'none' and resolvconf_mode == 'host_resolvconf'
|
||||||
|
|
||||||
- name: Preinstall | stop controller
|
- name: Preinstall | restart kube-controller-manager
|
||||||
replace:
|
shell: "docker ps -f name=k8s-controller-manager* -q | xargs --no-run-if-empty docker rm -f"
|
||||||
dest: "{{ kube_manifest_dir }}/kube-controller-manager.manifest"
|
|
||||||
regexp: '(\s+)image:\s+.*?$'
|
|
||||||
replace: '\1image: kill.controller.using.fake.image.in:manifest'
|
|
||||||
when: inventory_hostname in groups['kube-master'] and dns_mode != 'none' and resolvconf_mode == 'host_resolvconf' and kube_controller_set.stat.exists
|
when: inventory_hostname in groups['kube-master'] and dns_mode != 'none' and resolvconf_mode == 'host_resolvconf' and kube_controller_set.stat.exists
|
||||||
|
|
||||||
- name: Preinstall | pause for controller
|
|
||||||
pause: seconds=20
|
|
||||||
when: inventory_hostname in groups['kube-master'] and dns_mode != 'none' and resolvconf_mode == 'host_resolvconf' and kube_controller_set.stat.exists
|
|
||||||
|
|
||||||
- name: Preinstall | restart controller
|
|
||||||
replace:
|
|
||||||
dest: "{{ kube_manifest_dir }}/kube-controller-manager.manifest"
|
|
||||||
regexp: '(\s+)image:\s+.*?$'
|
|
||||||
replace: '\1image: {{ hyperkube_image_repo }}:{{ hyperkube_image_tag }}'
|
|
||||||
when: inventory_hostname in groups['kube-master'] and dns_mode != 'none' and resolvconf_mode == 'host_resolvconf' and kube_controller_set.stat.exists
|
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue