C12s/c12s-kubespray
3
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
2964 commits 17 branches 66 tags 141 MiB
Commit graph

2964 commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Chad Swenson 0e6b4e80f7
Merge pull request #2490 from woopstar/workaround-fix-1 
Only apply roles from first master node to fix regression
 2018-03-21 20:29:59 -05:00
Chad Swenson 9949782e96
Merge pull request #2489 from woopstar/token-fix-1 
Only copy tokens if tokens_list contains any
 2018-03-21 20:28:06 -05:00
Chad Swenson bbb6e7b3da
Merge pull request #2508 from melkosoft/cilium 
Cilium v.1.0.0-rc8
 2018-03-21 20:25:43 -05:00
Chad Swenson bc68188209
Merge pull request #2498 from zmsp/master 
Upgraded kubernetes from 1.9.3 to 1.9.5
 2018-03-21 20:25:05 -05:00
woopstar d3780e181e Switch hyperkube from CoreOS to Google 2018-03-21 23:27:16 +01:00
Andreas Krüger 2e202051e3
Merge pull request #2364 from whereismyjetpack/default-download 
set local_release_dir in downloads to match others
 2018-03-21 23:16:48 +01:00
Chad Swenson 448c1d5faa
Merge pull request #2509 from chadswen/flannel-update 
Update flannel version to v0.10.0
 2018-03-21 12:15:09 -05:00
Andreas Krüger ff2b8e5e60
Merge pull request #2503 from woopstar/kubelet-fix-1 
Fix duplicate --proxy-client-cert-file and --proxy-client-key-file
 2018-03-21 10:03:31 +01:00
Erwan Miran 8b71ef8ceb Labels from role (node-role.k8s.io/node) and labels from inventory are merged into node-labels parameter in kubelet 2018-03-21 09:19:05 +01:00
mirwan ee8f678010 Addition of the .creds extension to the credentials files generated by password lookup in order for Ansible not to consider them as inventory files with inventory_ignore_extensions set accordingly (#2446) 2018-03-21 10:50:32 +03:00
melkosoft 6425c837d5 Added GCE Cilium Ubuntu test 2018-03-21 04:39:29 +00:00
Chad Swenson a6b918c1a1
Merge pull request #2485 from LuckySB/flannel_iface_regexp 
Add --iface-regex options to flannel
 2018-03-20 21:18:01 -05:00
Chad Swenson c025ab4eb4 Update flannel version to v0.10.0 2018-03-20 19:59:51 -05:00
melkosoft ae30009fbc changed version to 1.0.0-rc8 2018-03-20 14:18:56 -07:00
melkosoft 158d775306 changed cilium to 1.0.0-rc7. Set CI to use coreos for cilium test 2018-03-20 12:43:26 -07:00
woopstar 9d540165c0 Set kube_api_aggregator_routing to default false as we use kube-proxy 2018-03-20 16:28:05 +01:00
Bharat Kunwar 0cb51e7530
Merge branch 'master' into patch-1 2018-03-20 13:36:25 +00:00
Bharat Kunwar 13e47e73c8
Update kubeadm-config.yaml.j2 
As requested
 2018-03-20 13:33:36 +00:00
Bharat Kunwar 6c4e5e0e3d
Update kubeadm-config.yaml.j2 2018-03-20 13:30:57 +00:00
Bharat Kunwar d2fd7b7462
Update kube-apiserver.manifest.j2 2018-03-20 12:19:53 +00:00
Bharat Kunwar d9453f323b
Update kube-apiserver.manifest.j2 2018-03-20 12:16:35 +00:00
Bharat Kunwar b787b76c6c
Update kube-apiserver.manifest.j2 
Ensure that kube-apiserver will respond even if one of the nodes are down.
 2018-03-20 12:06:34 +00:00
woopstar a94a407a43 Fix duplicate --proxy-client-cert-file and --proxy-client-key-file 2018-03-20 12:08:36 +01:00
gorazio 96e46c4209
bump after CLA signing 2018-03-20 10:23:50 +03:00
gorazio aa30fa8009
Add prometheus annotations to spec in ingress 
Added annotations from metadata to spec.template.metadata. Without it, pod does not get any annotations, and Prometheus didn't see it
 2018-03-20 08:47:36 +03:00
Zobair Shahadat ebfee51aca Upgraded kubernetes from 1.9.3 to 1.9.5 2018-03-19 15:42:24 -04:00
Andreas Krüger 8b6a6a5a28
Merge pull request #2487 from MQasimSarfraz/upgrade-playbook-fix 
Mark "calico-rr" as optional in fact gather
 2018-03-19 20:25:24 +01:00
Andreas Holmsten 14ac7d797b Rotate local-volume-provisioner token 
When tokens need to rotate, include local-volume-provisioner
 2018-03-19 13:04:18 +01:00
Andreas Krüger f253691a68
Merge pull request #2347 from hswong3i/multiple_artifacts_dir 
Support multiple artifacts under individual inventory directory
 2018-03-19 12:45:55 +01:00
Sergey Bondarev 038da7255f check if group kube-ingress is not empty 
fix spelling mistaker ingress_nginx_host_network
set default value for ingress_nginx_host_network: false
 2018-03-19 12:59:38 +03:00
Chen Hong 73cd24bf5a gather facts from all instances, maybe include calico-rr 2018-03-19 14:35:45 +08:00
Chen Hong 4ee9cb2be9 gather facts from all instances, maybe include calico-rr 2018-03-19 14:32:25 +08:00
woopstar f1d2f84043 Only apply roles from first master node to fix regression 2018-03-18 16:15:01 +01:00
woopstar b9a949820a Only copy tokens if tokens_list contains any 2018-03-18 08:42:38 +01:00
Andreas Krüger 50e5f0d28b
Merge pull request #2468 from LuckySB/master 
change expirations period for generated certificate from 10y to 100 years
 2018-03-17 19:43:40 +01:00
Sergey Bondarev 1481f7d64b Dedicated node for ingress nginx controller 
The ability to create dedicated node for ingress nginx controller
host type network for nginx controller

and add from example https://github.com/kubernetes/ingress-nginx/blob/master/docs/examples/static-ip/nginx-ingress-controller.yaml
terminationGracePeriodSeconds: 60
 2018-03-17 02:54:46 +03:00
Chad Swenson 7d33650019
Merge pull request #2462 from woopstar/coredns-patch 
Add CoreDNS support
 2018-03-16 18:33:36 -05:00
MQasimSarfraz 728598b230 Mark "calico-rr" as optional in fact gathering 2018-03-16 21:09:47 +00:00
woopstar e40368ae2b Add CoreDNS support with various fixes 
Added CoreDNS to downloads

Updated with labels. Should now work without RBAC too

Fix DNS settings on hosts

Rename CoreDNS service from kube-dns to coredns

Add rotate based on http://edgeofsanity.net/rant/2017/12/20/systemd-resolved-is-broken.html

Updated docs with CoreDNS info

Added labels and fixed minor settings from official yaml file: https://github.com/kubernetes/kubernetes/blob/release-1.9/cluster/addons/dns/coredns.yaml.sed

Added a secondary deployment and secondary service ip. This is to mitigate dns timeouts and create high resitency for failures. See discussion at 'https://github.com/coreos/coreos-kubernetes/issues/641#issuecomment-281174806'

Set dns list correct. Thanks to @whereismyjetpack

Only download KubeDNS or CoreDNS if selected

Move dns cleanup to its own file and import tasks based on dns mode

Fix install of KubeDNS when dnsmask_kubedns mode is selected

Add new dns option coredns_dual for dual stack deployment. Added variable to configure replicas deployed. Updated docs for dual stack deployment. Removed rotate option in resolv.conf.

Run DNS manifests for CoreDNS and KubeDNS

Set skydns servers on dual stack deployment

Use only one template for CoreDNS dual deployment

Set correct cluster ip for the dns server
 2018-03-16 21:51:37 +01:00
Brad Beam 4ff17cb5a5
Merge pull request #2457 from MQasimSarfraz/vsphere-volumes-rbac 
Fix vsphere cloud_provider RBAC permissions
 2018-03-16 14:08:49 -05:00
Sergey Bondarev b7e6dd0dd4 Add --iface-regex options to flannel 
Flannel use interface for inter-host communication setted on --iface options
Defaults to the interface for the default route on the machine.

flannel config set via daemonset, and flannel config on all nodes is the same.
But different nodes can have different interface names for the inter-host communication network

The option --iface-regex allows the flannel to find the interface on which the address is set from the inter-host communication network
 2018-03-16 21:44:36 +03:00
Qasim Sarfraz 8ee2091955
Merge pull request #3 from kubernetes-incubator/master 
Sync Upstream
 2018-03-16 17:21:54 +01:00
Sergey Bondarev 3fac550090 Merge remote-tracking branch 'upstream/master' 2018-03-16 14:09:54 +03:00
Andreas Krüger d29a1db134
Merge pull request #2461 from woopstar/patch-11 
Add support to kubeadm too
 2018-03-16 08:24:31 +01:00
Andreas Krüger 653d97dda4
Merge pull request #2472 from woopstar/patch-12 
Make sure output from extra args is strings
 2018-03-16 08:23:50 +01:00
Andreas Krüger 5364160d6a
Merge pull request #2476 from woopstar/patch-13 
Enable encrypting the secrets
 2018-03-16 08:22:54 +01:00
Andreas Krüger 1a35948ff6
Enable encrypting the secrets 
Enable the CI test to check the encryption of secrets
 2018-03-15 20:33:57 +01:00
woopstar 40c0f3756b Encapsulate item instead of casting to string 2018-03-15 20:27:21 +01:00
Andreas Krüger 3d6fd49179 Added option for encrypting secrets to etcd v.2 (#2428) 
* Added option for encrypting secrets to etcd

* Fix keylength to 32

* Forgot the default

* Rename secrets.yaml to secrets_encryption.yaml

* Fix static path for secrets file to use ansible variable

* Rename secrets.yaml.j2 to secrets_encryption.yaml.j2

* Base64 encode the token

* Fixed merge error

* Changed path to credentials dir

* Update path to secrets file which is now readable inside the apiserver container. Set better file permissions

* Add encryption option to k8s-cluster.yml
 2018-03-15 22:20:05 +03:00
Oleg Vyukov d843e3d562 Fix indent Custom ConfigMap ingress-nginx (#2447) 2018-03-15 22:18:18 +03:00