Commit Graph

556 Commits

Author SHA1 Message Date
Darren Shepherd
782004bec9 Create pidns for rootless 2020-01-31 21:40:34 -07:00
Erik Wilson
0374c4f63d Add --disable flag 2020-01-30 16:45:01 -07:00
Erik Wilson
3592d0bdd9
Merge pull request #1344 from ibuildthecloud/dialer-fallback
If tunnel session does not exist fallback to default dialer
2020-01-27 13:59:45 -07:00
Erik Wilson
1a2690d7be
Merge pull request #1192 from galal-hussein/add_encryption_config
Add secret encryption config
2020-01-27 13:59:09 -07:00
Darren Shepherd
bf57a7f419 Don't start node controller if coredns is not deployed 2020-01-22 11:09:36 -07:00
Darren Shepherd
3396a7b099 If tunnel session does not exist fallback to default dialer 2020-01-22 11:04:41 -07:00
Erik Wilson
1b23c891dd
Merge pull request #1304 from erikwilson/fixup-cadvisor
Run kubelet with containerd flag
2020-01-20 15:37:22 -07:00
Erik Wilson
4cacffd7e6
Merge pull request #1298 from erikwilson/warn-npc-fail
Warn if NPC can't start rather than fatal error
2020-01-20 15:36:56 -07:00
Erik Wilson
fa03a0df3c Run kubelet with containerd flag
The containerd flag was accidentally added to kubelet and is
deprecated, but needed for cadvisor to properly connect with
the k3s containerd socket, so adding for now.
2020-01-16 10:25:57 -07:00
Erik Wilson
5b98d10e4b Warn if NPC can't start rather than fatal error
If the ip_set kernel module is not available we should warn
that the network policy controller can not start rather than
cause a fatal error.

Also adds module probing and config checks for ip_set.
2020-01-14 14:30:12 -07:00
Erik Wilson
7675f9f85c Clean up host-gw variable names 2020-01-08 17:43:07 -07:00
Segator
c23f12765e hostgw flannel support 2020-01-08 17:43:07 -07:00
Segator
6736e24673 support hostgw 2020-01-08 17:43:07 -07:00
Erik Wilson
9421746ccf
Merge pull request #1235 from ibuildthecloud/master
Fix uint64 truncation issue in dqlite
2019-12-23 13:56:18 -07:00
galal-hussein
388cd9c4e8 Add secret encryption configuration 2019-12-23 13:16:27 +02:00
Darren Shepherd
9bda58c81a Fix uint64 truncation issue in dqlite 2019-12-21 08:51:39 -07:00
galal-hussein
07d4c1510d Add lease permissions to ccm cluster role 2019-12-21 04:41:24 +02:00
Erik Wilson
5c37454762
Merge pull request #1198 from narqo/tunel-addr-join-host-port
Respect IPv6 when building proxy address
2019-12-19 15:20:12 -07:00
Erik Wilson
9b2538c2c4 Set wireguard persistent-keepalive on wg set peer 2019-12-19 14:54:48 -07:00
Erik Wilson
3376f31fc2 Revert "Merge pull request #1190 from erikwilson/wireguard-keepalive"
This reverts commit e712cdf7e8, reversing
changes made to d5929bc8c8.

Wireguard docs fail to describe that persistent-keepalive is only valid
when peer is set.
2019-12-19 14:41:38 -07:00
Vladimir Varankin
0c5299c951 pkg/agent/tunnel: respect ipv6 when building proxy addresses 2019-12-19 12:08:07 +01:00
Erik Wilson
6875b11dd2 Fix identity_token -> identitytoken for containerd toml 2019-12-17 21:14:05 -07:00
Darren Shepherd
4acaa0740d Small dqlite fixes 2019-12-16 11:45:01 -07:00
Erik Wilson
97383868bd
Merge pull request #1186 from erikwilson/upgrade-k8s-1.17.0
Upgrade k8s  to v1.17.0
2019-12-16 09:40:38 -07:00
Erik Wilson
e712cdf7e8
Merge pull request #1190 from erikwilson/wireguard-keepalive
Set Wireguard keepalive to 25 seconds
2019-12-16 09:40:11 -07:00
Erik Wilson
5679a8bd2f Update generated 2019-12-15 23:28:19 -07:00
Erik Wilson
76281bf731 Update k3s for k8s 1.17.0 2019-12-15 23:28:19 -07:00
Erik Wilson
814c302d7c
Merge pull request #955 from btashton/servicelb-sysctl
Enable ip forwarding on both all and default net config
2019-12-12 17:31:02 -07:00
Erik Wilson
7b62811f98 Set Wireguard keepalive to 25 seconds 2019-12-12 10:40:41 -07:00
Erik Wilson
d4959d53af
Merge pull request #1182 from erikwilson/docker-pause-image
Allow --pause-image to set docker sandbox image also
2019-12-11 10:36:07 -07:00
Erik Wilson
2eacfa75cb
Merge pull request #1180 from erikwilson/cleanup-flannel-backend-help-text
Cleanup --flannel-backend help text
2019-12-11 10:35:50 -07:00
Erik Wilson
56b0743653
Merge pull request #1171 from dweomer/mutable-labels
Mutable --node-label values for server/agent sub-commands.
2019-12-11 10:35:27 -07:00
Erik Wilson
c2be59e5f3
Allow udp protocol for service-lb ports
For #577
2019-12-11 10:34:11 -07:00
Brennan Ashton
a952d5c32a Default device net config enables ip forwarding
The Linux kernel is inconsistent about how devconf is configured for new
network namespaces between ipv4 and ipv6. The behavior can also be
controlled via net.core.devconf_inherit_init_net in Linux 5.1+ so make
sure to enable forwarding on all and default for both ipv6 and ipv4.

This issue first came up testing on a yocto kernel that had this patch:
 ipv4: net namespace does not inherit network configurations

[0] https://www.kernel.org/doc/html/latest/admin-guide/sysctl/net.html#devconf-inherit-init-net
[1] https://lkml.org/lkml/2014/7/29/119

Signed-off-by: Brennan Ashton <brennana@jfrog.com>
2019-12-10 16:29:59 -08:00
Erik Wilson
2de93d70cf Allow --pause-image to set docker sandbox image also 2019-12-10 16:16:26 -07:00
Erik Wilson
11e4d01efe Cleanup --flannel-backend help text 2019-12-10 14:51:16 -07:00
Jacob Blain Christen
063efb25bb Mutable --node-label values for server/agent sub-commands.
Values passed in via the server/agent `--node-label` flag are treated as mutable. They are passed through to the kubelet just as before but after the kubelet comes up they are applied again. This allows for passing labels a k3s start-time that may be necessary for scheduling but may change from boot to boot, e.g. `k3os.io/version` after an upgrade.

Tested locallon on my amd64 workstation with the docker container.

Addresses #1119.
2019-12-09 16:40:15 -07:00
yuzhiquan
24869ddf21 remove []byte trans, handle func error 2019-11-28 19:26:45 +08:00
yuzhiquan
7cc0110081 fix typo 2019-11-28 19:24:19 +08:00
Erik Wilson
ce3a03a16a
Merge pull request #1111 from dduportal/patch-1
Bump Traefik to 1.7.19
2019-11-26 15:29:57 -07:00
dduportal
9598a527a2 Regenerate bindata
Signed-off-by: dduportal <1522731+dduportal@users.noreply.github.com>
2019-11-26 17:21:22 +01:00
Guangbo Chen
8ff4c3c256 Update base pause image to rancher repo 2019-11-25 16:09:05 +08:00
galal-hussein
99b8222e8d Change storage to datastore 2019-11-15 21:52:07 -07:00
Darren Shepherd
c2e7f9c7b0 Add logging parameters 2019-11-15 21:51:51 -07:00
Darren Shepherd
4e544bded2 Delete unused code 2019-11-15 21:51:51 -07:00
Darren Shepherd
ff34c5c5cf Download cert/key to agent with single HTTP request
Since generated cert/keys are stored locally, each server has a different
copy.  In a HA setup we need to ensure we download the cert and key from
the same server so we combined HTTP requests to do that.
2019-11-15 21:51:51 -07:00
Erik Wilson
95ff805c98 Fix broken K3S_TOKEN env 2019-11-14 12:42:42 -07:00
Darren Shepherd
77703b90ff Don't ever change 10252/10251 ports
Kubernetes componentstatus check is hardcoded to 10252 and 10251
so we should never change these ports.  If you do componentstatus
will return error.
2019-11-13 18:20:57 -07:00
Erik Wilson
d4151b7739 Add the --with-node-id flag to agent 2019-11-13 16:13:41 -07:00
Erik Wilson
670d4b4162
Merge pull request #914 from erikwilson/validation-utilities
Add check-config for system validation
2019-11-13 09:00:08 -07:00
Erik Wilson
a73f8b1773 Update check-config.sh for k3s 2019-11-13 08:34:24 -07:00
Darren Shepherd
9a4df7c05c
Merge pull request #1058 from ibuildthecloud/master
Update kine/dynamiclistener
2019-11-13 15:31:48 +00:00
Darren Shepherd
6063317144 Add a couple more known SANs 2019-11-13 06:05:31 +00:00
Erik Wilson
e4b3730fa2 Go DNS lookup order hack 2019-11-12 20:16:31 -07:00
Erik Wilson
d383d1b47e
Merge pull request #1054 from erikwilson/sort-deployments
Use lexical (sorted) order for file deployments
2019-11-12 16:51:24 -07:00
Erik Wilson
b298733b3f Use lexical (sorted) order for file deployments 2019-11-12 16:05:09 -07:00
Erik Wilson
55c05ac500 Refactor node password location 2019-11-12 15:30:34 -07:00
Erik Wilson
eff502342a Fix node-passwd on upgrade missing 3 columns 2019-11-12 13:16:05 -07:00
Darren Shepherd
3e213d1347 Allow --debug to be set with K3S_DEBUG env var 2019-11-12 08:22:48 +00:00
Darren Shepherd
668fcf7e83 Fix broken --cluster-reset 2019-11-12 01:12:24 +00:00
Darren Shepherd
b2439788d7 Reduce logging in dqlite 2019-11-12 01:12:24 +00:00
Darren Shepherd
0ae20eb7a3 Support both http and db based bootstrap 2019-11-12 01:12:24 +00:00
Darren Shepherd
3f5fb70116 Move server arguments to experimental for dqlite related 2019-11-12 01:12:24 +00:00
Darren Shepherd
29b270dce6 Wait for apiserver to be health, not just running 2019-11-12 01:09:33 +00:00
Darren Shepherd
e2431bdf9d Add dqlite support 2019-11-10 03:49:56 +00:00
Darren Shepherd
53d3ab074c Shrink k3s wrapper binary 2019-11-08 21:35:58 +00:00
Darren Shepherd
91cacb3a14 Fix server join issues 2019-11-08 21:35:58 +00:00
Erik Wilson
e9a11c7cc4 Update generated code 2019-11-05 14:34:09 -07:00
Erik Wilson
47a94637dc Move metrics-server manifests to sub-directory 2019-11-05 14:30:50 -07:00
Erik Wilson
01f6e0e64e Add context to server daemon functions that wait 2019-11-05 11:06:07 -07:00
larmog
7aa3d08385 Wait for api-server to report version after starting 2019-11-05 11:05:22 -07:00
Erik Wilson
c4eb6ea3ef Update generated data 2019-11-05 10:11:21 -07:00
Erik Wilson
0fef39de65 Add default multi-arch metrics-server deployment 2019-11-05 10:11:08 -07:00
Erik Wilson
931f63073f
Merge pull request #899 from mrueg/coredns-ready
coredns: Add readinessProbe
2019-11-04 14:25:45 -07:00
Erik Wilson
2bbc356f65
Merge pull request #1008 from erikwilson/ip6-system-setup
Improve ip6 system setup & utilities
2019-11-04 14:24:55 -07:00
Erik Wilson
afa9422ad9 Improve ip6 system setup & utilities 2019-11-04 11:35:14 -07:00
Darren Shepherd
609c5e5f51 Update generated code 2019-10-30 19:08:26 -07:00
Darren Shepherd
ba240d0611 Refactor tokens, bootstrap, and cli args 2019-10-30 19:06:49 -07:00
Manuel Rüger
e8ca18ab2b coredns: Add readinessProbe 2019-10-29 11:51:36 +01:00
Erik Wilson
8a8fa8a351 Update go generated data 2019-10-28 16:10:36 -07:00
YAMAMOTO Takashi
4970d6133f Propagate DisableAgent flag
The recent setMasterRoleLabel stuff uses it.
2019-10-28 14:43:53 +09:00
Erik Wilson
f648a64ee3
Merge pull request #923 from AkihiroSuda/fix-rootless-kubelet-flags
rootless: add kubelet flags automatically
2019-10-25 01:40:06 -07:00
Akihiro Suda
aafccdbccb rootless: add kubelet flags automatically
Fix https://github.com/rancher/k3s/issues/784

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-10-25 17:10:14 +09:00
Erik Wilson
ad4ea681ce Hide the --disable-agent flag 2019-10-24 21:51:58 -07:00
Erik Wilson
1cd3786a6a
Merge pull request #952 from btashton/bump-klipper-lb
Bump klipper-lb version
2019-10-24 21:30:06 -07:00
Brennan Ashton
af7dc09f5c Bump klipper-lb version
Signed-off-by: Brennan Ashton <brennana@jfrog.com>
2019-10-24 14:01:47 -07:00
Erik Wilson
aed163b338 Remove trailing whitespace trimming from containerd template 2019-10-23 08:02:07 -07:00
Erik Wilson
2ff2baba49
Merge pull request #913 from erikwilson/kube-router-network-policy
Add network policy support
2019-10-18 16:14:18 -07:00
Erik Wilson
da3a7c6bbc Add network policy controller 2019-10-18 16:11:42 -07:00
Erik Wilson
1df72d14b8 Cleanup containerd config template spacing 2019-10-18 12:34:27 -07:00
Erik Wilson
90df4a1921 Use containerd-shim-run-v2 2019-10-18 12:34:27 -07:00
Erik Wilson
12307a4a69 Fallback to /etc/strongswan for config
Needed for docker image
2019-10-17 22:38:48 -07:00
Darren Shepherd
30c14a4db6
Merge pull request #901 from erikwilson/default-kubelet-dir
Use default kubelet directory
2019-10-17 16:49:11 -07:00
Erik Wilson
0ee586c233
Merge pull request #894 from galal-hussein/fix_master_label_ha
Fix Master label in HA setups
2019-10-16 16:31:12 -07:00
Erik Wilson
265181715a
Merge pull request #892 from iwilltry42/master
[Enhancement] include subdirectories for auto-deploy manifests
2019-10-16 16:30:35 -07:00
Erik Wilson
9e14d3e470
Merge pull request #851 from MagnaXSoftware/switch-string-slice
Add comma-separated no-deploy values
2019-10-16 16:00:46 -07:00
galal-hussein
7c60285435 Fix master role label in ha setups 2019-10-16 21:55:40 +02:00
Xavier Landreville
2f4a08c54d Add comma-separated no-deploy values
This allows no-deploy values to be either specified as multiple --no-deploy invocations,
or a single invocation with comma-separated values.
2019-10-16 15:51:04 -04:00
galal-hussein
d2c1f66496 Add k3s cloud provider 2019-10-16 21:13:15 +02:00
Erik Wilson
c72ef62d2c Use default kubelet directory 2019-10-15 10:47:03 -07:00
Thorsten Klein
50017c39a2 include subdirectories for auto-deploy manifests 2019-10-11 12:59:37 +02:00
Erik Wilson
c12d2a1aea
Merge pull request #867 from galal-hussein/private_reg
Add private registry support to containerd
2019-10-10 14:35:37 -07:00
galal-hussein
436ff4ef63 fix cert rotation function 2019-10-10 03:35:32 +02:00
galal-hussein
5ccc880ddb Add private registry to containerd 2019-10-08 01:54:53 +02:00
Erik Wilson
cac41db0e1
Merge pull request #816 from galal-hussein/default_local_storage
Add default storage class
2019-10-01 14:09:24 -07:00
galal-hussein
2dc5ba5bae Add certificate rotation 2019-09-30 18:34:58 +02:00
galal-hussein
56e0e5ad7e Add default local storage provisioner 2019-09-30 18:17:33 +02:00
Erik Wilson
6f7a1a70fa Label new flannel flags as experimental 2019-09-27 18:33:05 -07:00
Erik Wilson
0af32bba75 Use newest flannel API 2019-09-27 18:33:05 -07:00
Erik Wilson
999e40d6d3 Add strongswan utilities for ipsec 2019-09-27 18:26:39 -07:00
Erik Wilson
959acf9c92 Add --flannel-backend flag 2019-09-27 18:26:39 -07:00
Erik Wilson
359a77939c Enable hairpin mode 2019-09-27 18:26:39 -07:00
Erik Wilson
36fa425d45 Enable extension and ipsec flannel backends 2019-09-27 18:26:39 -07:00
Erik Wilson
3cd807a657 Add --flannel-conf flag 2019-09-27 18:26:39 -07:00
Darren Shepherd
8dcc09f7be Update generated code 2019-09-27 16:54:37 -07:00
galal-hussein
b1891f445b Add master role label on startup 2019-09-27 23:04:24 +02:00
Erik Wilson
db9540aa10 Bump CoreDNS to v1.6.3 2019-09-18 17:11:04 -07:00
Darren Shepherd
36ca606073
Merge pull request #793 from yamt/noderestriction
Add back NodeRestriction
2019-09-07 12:07:01 -07:00
Darren Shepherd
df1f4551cb Update generated code 2019-09-05 15:16:44 -07:00
YAMAMOTO Takashi
9cf80eacd9 Add back NodeRestriction
It has been removed as a part of #764 for no obvious reasons.

Fix #791
2019-09-05 15:47:46 +09:00
Erik Wilson
197985c673 Add --kubelet-certificate-authority flag 2019-09-02 10:49:23 -07:00
Darren Shepherd
209acb58c1 Revert CSI patch 2019-08-31 22:39:24 -07:00
Darren Shepherd
8f597ba168 Don't run leader elections on controllers when no leader election 2019-08-28 20:53:40 -07:00
Darren Shepherd
f0382329a5 Drop openapi hack 2019-08-28 20:53:39 -07:00
Darren Shepherd
f34329f4f1 Wrong import 2019-08-28 20:53:39 -07:00
Darren Shepherd
f57dd13774 Default kube-apiserver to httpsport + 1 2019-08-28 20:53:38 -07:00
Darren Shepherd
9c8b95be9d Drop unneeded prometheus imports 2019-08-28 20:53:37 -07:00
Darren Shepherd
a51a2eaaad Add anonymous-auth=false and remove NodeRestriction 2019-08-28 20:53:37 -07:00
Darren Shepherd
b24f214a50 Update to new cri-api import 2019-08-28 20:53:36 -07:00
Manuel Zapf
50227ff894 bump traefik version to 1.7.14 (#769)
* bump traefik version
2019-08-28 20:21:07 -07:00
Erik Wilson
a5238098d1
Merge pull request #752 from carlosedp/patch-1
Enable metrics endpoint to Traefik
2019-08-26 21:26:02 -07:00
Erik Wilson
5679cfafaf
Merge pull request #707 from ibuildthecloud/pr683
Integrate Kine
2019-08-26 09:25:37 -07:00
Darren Shepherd
2cb6f52339 Disable storing bootstrap information by default 2019-08-24 22:27:24 -07:00
Carlos Eduardo
993e6a1950 Enable metrics endpoint to Traefik 2019-08-22 19:42:58 -03:00
Erik Wilson
e6067314c9 Localhost -> 127.0.0.1 2019-08-22 11:56:00 -07:00
galal-hussein
1ae0c540d7 Refactor bootstrap, move kine startup code to kine, integrate kine 2019-08-22 09:14:43 -07:00
Erik Wilson
a76ca2e887 Remove hostname requirement in /etc/hosts 2019-08-21 22:56:20 -07:00
William Zhang
458cea6633 Update traefik to 1.7.12
Signed-off-by: William Zhang <warmchang@outlook.com>
2019-08-20 02:35:07 +00:00
Darren Shepherd
99716deb08
Merge pull request #705 from yamt/cg
Appease kubelet warnings on docker for mac
2019-08-15 17:13:14 -07:00
Darren Shepherd
63dfc168d7
Merge pull request #718 from erikwilson/log-update
Cleanup logging
2019-08-15 17:12:29 -07:00
William Zhang
bdb8550638 🔧 jteeuwen/go-bindata --> go-bindata/go-bindata
Signed-off-by: William Zhang <warmchang@outlook.com>
2019-08-12 03:24:03 +00:00
Erik Wilson
c849525a27
Merge pull request #722 from erikwilson/debug-lb-logs
Change load balancer logging to debug
2019-08-09 14:12:31 -07:00
Erik Wilson
98254a3412 Change load balancer logging to debug 2019-08-08 10:48:11 -07:00
Erik Wilson
30e050a692 Cleanup logging 2019-08-07 22:45:54 -07:00
Erik Wilson
3c342e22a6 Fix panic in node controller 2019-08-06 10:42:42 -07:00
YAMAMOTO Takashi
fc8eddae29 Appease kubelet warnings on docker for mac
On my environment, the name=systemd entry in /proc/self/cgroup
looks like:

	13:name=systemd:/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499

Kubelet periodically complains like:

	E0802 06:42:52.667123       1 summary_sys_containers.go:47] Failed to get system container stats for "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy": failed to get cgroup stats for "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy": failed to get container info for "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy": unknown container "/docker/917b388b40c70b17a3283d852d38bfcdc84d1bf8242e32a779eacd98a610e499/kube-proxy"
2019-08-02 16:22:51 +09:00
Erik Wilson
c170115c54
Merge pull request #676 from erikwilson/go-proxy
Add go load-balancing proxy
2019-08-01 16:03:41 -07:00
Erik Wilson
5deef13086
Merge pull request #687 from yamt/cacerts
Simplify startWrangler a bit
2019-08-01 16:01:42 -07:00
Erik Wilson
be0cc6e943
Merge pull request #690 from erikwilson/regenerate-certs-on-ca-change
Regenerate server certs if CA changed
2019-08-01 15:59:54 -07:00
Erik Wilson
739e4214bd
Merge pull request #693 from yamt/insecure-bootstrap
Fix bootstrap with non-tls etcd
2019-07-31 14:18:35 -07:00
Erik Wilson
506d8cdcc3
Merge pull request #691 from erikwilson/early-return-routes
Fix missing early returns on routes
2019-07-31 14:12:09 -07:00
YAMAMOTO Takashi
d78701acb1 Fix bootstrap with non-tls etcd 2019-07-31 16:14:13 +09:00
Erik Wilson
fdb997b4ee Fix missing early returns on routes 2019-07-30 15:44:34 -07:00
Erik Wilson
a74d9e5282 Regenerate server certs if CA changed 2019-07-30 14:55:25 -07:00
Erik Wilson
a17e336993 Use go tcpproxy 2019-07-30 09:53:15 -07:00
YAMAMOTO Takashi
88e668cf6f Simplify startWrangler a bit
We no longer make dynamiclistener generate CA certs.
2019-07-30 10:16:45 +09:00
YAMAMOTO Takashi
07eeb56d81 Remove pkg/proxy which is no longer used 2019-07-29 12:49:13 +09:00
YAMAMOTO Takashi
35d972fd72 Sort args to make log outputs a bit more deterministic 2019-07-24 13:16:41 +09:00
Erik Wilson
1833b65fcd
Merge pull request #647 from yamt/remove-proxy-port
Remove agent proxy config which is no longer used
2019-07-23 15:51:51 -07:00
Erik Wilson
e1162c7cfa Update agent to notify systemd 2019-07-18 06:40:39 -07:00
Erik Wilson
8ce509ee6b Cleanup tunnel logs 2019-07-18 05:00:07 -07:00
Erik Wilson
23b0797578 Add context to tunnel connect 2019-07-17 18:15:15 -07:00
Erik Wilson
b93b4732eb Start endpoint tunnel watch before waiting 2019-07-17 17:13:40 -07:00
Erik Wilson
2d32337334
Merge pull request #650 from erikwilson/update-bootstrap
Bootstrap node key files & fix permissions
2019-07-17 14:22:05 -07:00
Erik Wilson
2f4d2838ea Bootstrap node key files & fix permissions 2019-07-17 13:57:33 -07:00
YAMAMOTO Takashi
dc4ebd4c67 Remove agent proxy config which is no longer used 2019-07-17 18:05:16 +09:00
YAMAMOTO Takashi
f6a04ea995 Add a few comments in bootstrap.go 2019-07-17 16:25:34 +09:00
Erik Wilson
f6701bbe99
Merge pull request #634 from erikwilson/enforce-type-on-bootstrap
Enforce explicit read or write for bootstrap
2019-07-14 00:52:37 -07:00
Erik Wilson
fdc1427317 Add more logs for bootstrap 2019-07-14 00:49:08 -07:00
Erik Wilson
e77dc568bb Cleanup tunnel 2019-07-14 00:29:21 -07:00
Erik Wilson
34fc4d0336
Merge pull request #629 from erikwilson/update-remotedialer
Update remotedialer & tunnel logs
2019-07-12 16:22:10 -07:00
Erik Wilson
131f3bec44
Merge pull request #619 from erikwilson/node-ip-from-flannel-iface
Default node-ip from flannel-iface
2019-07-12 16:21:05 -07:00
Erik Wilson
e79fda96d2 Enforce explicit read or write for bootstrap 2019-07-12 16:18:53 -07:00
Erik Wilson
a1ce08d4f1 Default node-ip from flannel-iface 2019-07-12 15:46:36 -07:00
Erik Wilson
7e6664b684 Add resource version to tunnel endpoint watch 2019-07-12 15:38:49 -07:00
Erik Wilson
034a863696 Cleanup remotedialer tunnel logs 2019-07-12 15:38:49 -07:00
Erik Wilson
403e73ab1c
Merge pull request #633 from ibuildthecloud/wrangler
Update wrangler
2019-07-12 11:11:36 -07:00
Darren Shepherd
37a60b18ca Update wrangler 2019-07-12 10:21:15 -07:00
Darren Shepherd
dbb7b04c3d Add option to disable scheduler 2019-07-12 09:59:03 -07:00
Erik Wilson
185a8dca13
Merge pull request #615 from erikwilson/master
Use watch-cache for kvsql
2019-07-07 14:46:08 -07:00
Erik Wilson
ad11ba583f Use watch-cache for kvsql 2019-07-07 14:43:43 -07:00
Erik Wilson
c32e6469a8 Revert "Merge pull request #607 from dramich/mockgen"
This reverts commit cb306b9378, reversing
changes made to ebb12c74c6.
2019-07-07 14:41:19 -07:00
Erik Wilson
e0212144e8 Tunnel agent to all servers
Watch the kubernetes endpoints to create a tunnel to all servers.
2019-07-03 13:11:54 -07:00
Dan Ramich
3d50502cae Generated changes 2019-07-02 15:52:42 -07:00
Dan Ramich
760dd6b655 Disable mock generation 2019-07-02 15:36:43 -07:00
Erik Wilson
11a4c71f28 Use watch-cache for etcd3 backend 2019-07-01 14:09:25 -07:00
Erik Wilson
853708c8ba
Merge pull request #591 from erikwilson/add-ctr
Build & enable ctr with k3s server
2019-06-30 13:06:00 -07:00
Erik Wilson
24b73403c7 Cleanup bootstrap 2019-06-30 12:39:54 -07:00
Erik Wilson
ed72856d27 Build & enable ctr with k3s server 2019-06-30 09:30:25 -07:00
Erik Wilson
8d979d675e Add tls support for etcd cert storage backend 2019-06-30 08:28:42 -07:00
Erik Wilson
4b540f8d94 Cleanup command help text 2019-06-28 18:18:03 -07:00
galal-hussein
37582b6fac Add cert storage backend flag 2019-06-28 20:47:21 +02:00
galal-hussein
28d9d83be2 Add k3s HA bootstrap 2019-06-27 21:00:43 +02:00
Erik Wilson
7090a7d551 Move node password to separate file 2019-06-25 15:04:04 -07:00
Erik Wilson
29865fd9c9 Remove agent proxy 2019-06-25 15:04:04 -07:00
Erik Wilson
c9b62c9a90 Remove CA Certs/Key from listenerconfig storage 2019-06-25 15:04:04 -07:00
Erik Wilson
93f6690f26 Graceful upgrade token to server CA 2019-06-25 15:04:04 -07:00
Erik Wilson
1e035820bf Generated data 2019-06-25 15:04:04 -07:00
Erik Wilson
2c9444399b Refactor certs 2019-06-25 15:04:04 -07:00
Darren Shepherd
30c3c42f93 Add missing ConfigMap cache to helm apply 2019-06-19 13:32:14 -07:00
galal-hussein
94b5a22dda Disable the svclb controller nodeploy for svclb is passed 2019-06-18 23:05:16 +02:00
Darren Shepherd
e0d2bd3e2d Merge branch 'pr505' 2019-06-14 13:28:19 -07:00
Darren Shepherd
9f4e43fea6
Merge pull request #506 from AkihiroSuda/bump-up-rootlesskit
rootless: use built-in port driver
2019-06-14 13:23:14 -07:00
Erik Wilson
2b44679352 Generated data 2019-06-14 09:37:59 -07:00
galal-hussein
17d8708ca5 Add storage backend flags 2019-06-12 00:48:47 +02:00
Akihiro Suda
5a51a8de45 rootless: use built-in port driver
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-05-29 15:01:38 +09:00
Akihiro Suda
490d6aefe0 rootless: fix mounting /var/lib/cni
k3s was unable to start up when /var/lib/cni is missing on the host.

Fix https://github.com/rancher/k3s/issues/470

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-05-29 14:04:28 +09:00
Erik Wilson
199f673676
Merge pull request #479 from galal-hussein/add_storage_backend_options
Add MySQL and Postgress support
2019-05-28 16:57:38 -07:00
Darren Shepherd
7ee554013a Update generated code 2019-05-26 22:35:57 -07:00
Darren Shepherd
d94a346a1e Switch to wrangler-api and helm-controller 2019-05-26 22:32:24 -07:00
Darren Shepherd
c0702b0492 Port to wrangler 2019-05-26 22:28:50 -07:00
Darren Shepherd
16f7aaab66 Update vendor 2019-05-25 23:44:33 -07:00
Darren Shepherd
4b4dd1b59b
Merge pull request #454 from galal-hussein/node_labels_taints
Expose node labels and taints and add node roles
2019-05-25 00:39:55 +02:00
Darren Shepherd
a999cd43aa
Merge pull request #459 from galal-hussein/check_time
Check if server time before 1/1/1970
2019-05-25 00:38:53 +02:00
Darren Shepherd
0c18c5a92a
Merge pull request #461 from galal-hussein/fix_alternate_kubeconfig
Create symlink for kubeconfig when --write-kubeconfig is selected
2019-05-25 00:38:18 +02:00
Darren Shepherd
06b1acb324
Merge pull request #460 from galal-hussein/kubeconfig_readable
change permissions of kubeconfig and issue warning with kubectl wrapper
2019-05-25 00:36:30 +02:00
galal-hussein
e9cd8adbf6 Add Storage endpoint option 2019-05-16 01:05:24 +02:00
galal-hussein
4c6cf29e02 Create symlink for kubeconfig when --write-kubeconfig is selected 2019-05-10 21:08:28 +02:00
galal-hussein
483df6fd82 Check if server time before 1/1/1980
Check
2019-05-10 20:29:42 +02:00
Wenxuan Zhao
f0f57c1e44
Allow using built-in modules
Signed-off-by: Wenxuan Zhao <viz@linux.com>
2019-05-09 12:23:33 -07:00
galal-hussein
36bab003a3 Make kubeconfig not world readable and issue warning with kubectl wrapper 2019-05-09 00:54:52 +02:00
galal-hussein
930093dfe9 Expose node labels and taints and add node roles 2019-05-08 01:47:07 +02:00
Erik Wilson
b0e4228609
Merge pull request #434 from galal-hussein/add_no_proxy
Add no_proxy env to server
2019-05-03 15:20:13 -07:00
Erik Wilson
f7376ad979
Update proxy environment for helm controller
Add lowercase no_proxy and all_proxy/ALL_PROXY to environment for helm
2019-05-03 11:10:42 -07:00
galal-hussein
d9f958ceeb Add no_proxy environment to server 2019-05-03 19:44:30 +02:00
haokang.ke
52f845ec84 Make pause image configurable (#345) 2019-05-03 10:36:12 -07:00
Darren Shepherd
ea94b1af77
Merge pull request #433 from erikwilson/fix-0.5.0-cert-upgrade-bug
Force upgrade of token node cert
2019-05-03 10:35:36 -07:00
Darren Shepherd
5c62dcbb4b
Merge pull request #435 from galal-hussein/svclb_upgrade
handle old service lb deployments
2019-05-03 10:34:12 -07:00
galal-hussein
1e33142f29 handle old service lb deployments 2019-05-03 14:51:02 +02:00
galal-hussein
5d8d9e610b Add timeout to hostname check 2019-05-03 14:41:08 +02:00
Erik Wilson
d5ce19caae Force upgrade of token node cert 2019-05-02 16:22:42 -07:00
Darren Shepherd
4ec051d032
Merge pull request #422 from galal-hussein/use_cni_with_docker
Add cni plugin to kubelet if docker is used
2019-05-02 10:45:34 -07:00
Darren Shepherd
9005fd5176
Merge pull request #423 from galal-hussein/change_threshold
Change the stderr threshold for cli
2019-05-02 10:45:21 -07:00
galal-hussein
7e1699cda0 Check if hostname is resolvable before running agent 2019-05-01 22:54:05 +02:00
galal-hussein
fae6df0df0 Change the stderr threshold for cli 2019-05-01 05:23:32 +02:00
galal-hussein
191ac9371a Add cni plugin to kubelet if docker is used 2019-04-30 22:12:02 +02:00
Darren Shepherd
2950e81c23
Merge pull request #371 from warmchang/nf_conntrack
🔧 modprobe nf_conntrack
2019-04-26 16:01:13 -07:00
Darren Shepherd
9db91d7de3
Merge pull request #369 from erikwilson/node-dns
Node DNS & cert registration
2019-04-26 16:00:31 -07:00
Darren Shepherd
875ba289de
Merge pull request #375 from galal-hussein/schedule_svclb
Add node selector to service loadbalancer controller
2019-04-26 15:58:33 -07:00
Darren Shepherd
50f405ddfd
Merge pull request #376 from galal-hussein/fix_kubeletarg
Fix extra argument with multiple =
2019-04-26 15:57:16 -07:00
Erik Wilson
c9941895d6 Bind kubelet to all interfaces and use webhook auth 2019-04-26 15:02:30 -07:00
galal-hussein
f293e14645 Use NodeSelector when node label is enabled 2019-04-26 20:20:11 +02:00
Erik Wilson
305b596745 Remove node OnCreate 2019-04-26 10:50:33 -07:00
William Zhang
22bd3a3ce7 🔧 nf_conntrack module
Signed-off-by: William Zhang <zhang.wanmin@zte.com.cn>
2019-04-26 08:55:48 +08:00
galal-hussein
72d2edc0cb Fix extra argument with multiple = 2019-04-25 22:49:03 +02:00
Darren Shepherd
9376c39adf
Merge pull request #381 from galal-hussein/containerd_tmpl
Add containerd config go template
2019-04-25 13:36:30 -07:00
galal-hussein
bdf8a355e1 Add containerd config go template 2019-04-25 22:17:34 +02:00
Darren Shepherd
6a43f63c70
Merge pull request #388 from galal-hussein/pass_proxy_variable_to_helm
Add proxy env to helm controller
2019-04-25 11:33:26 -07:00
Erik Wilson
f584197bba Save password as text file 2019-04-25 10:53:21 -07:00
galal-hussein
b87684fcb9 Add proxy env to helm controller 2019-04-24 04:27:52 +02:00