mirror of
https://github.com/k3s-io/kubernetes.git
synced 2025-07-23 19:56:01 +00:00
followup of 79262 to cleanup PodPriority leftover
This commit is contained in:
parent
665e76d976
commit
6f10758446
@ -452,12 +452,6 @@ KUBE_PROXY_DAEMONSET="${KUBE_PROXY_DAEMONSET:-false}" # true, false
|
|||||||
# Optional: duration of cluster signed certificates.
|
# Optional: duration of cluster signed certificates.
|
||||||
CLUSTER_SIGNING_DURATION="${CLUSTER_SIGNING_DURATION:-}"
|
CLUSTER_SIGNING_DURATION="${CLUSTER_SIGNING_DURATION:-}"
|
||||||
|
|
||||||
# Optional: enable pod priority
|
|
||||||
ENABLE_POD_PRIORITY="${ENABLE_POD_PRIORITY:-}"
|
|
||||||
if [[ "${ENABLE_POD_PRIORITY}" == "true" ]]; then
|
|
||||||
FEATURE_GATES="${FEATURE_GATES},PodPriority=true"
|
|
||||||
fi
|
|
||||||
|
|
||||||
# Optional: enable certificate rotation of the kubelet certificates.
|
# Optional: enable certificate rotation of the kubelet certificates.
|
||||||
ROTATE_CERTIFICATES="${ROTATE_CERTIFICATES:-}"
|
ROTATE_CERTIFICATES="${ROTATE_CERTIFICATES:-}"
|
||||||
|
|
||||||
|
@ -493,12 +493,6 @@ KUBE_PROXY_MODE="${KUBE_PROXY_MODE:-iptables}"
|
|||||||
# Optional: duration of cluster signed certificates.
|
# Optional: duration of cluster signed certificates.
|
||||||
CLUSTER_SIGNING_DURATION="${CLUSTER_SIGNING_DURATION:-}"
|
CLUSTER_SIGNING_DURATION="${CLUSTER_SIGNING_DURATION:-}"
|
||||||
|
|
||||||
# Optional: enable pod priority
|
|
||||||
ENABLE_POD_PRIORITY="${ENABLE_POD_PRIORITY:-}"
|
|
||||||
if [[ "${ENABLE_POD_PRIORITY}" == "true" ]]; then
|
|
||||||
FEATURE_GATES="${FEATURE_GATES},PodPriority=true"
|
|
||||||
fi
|
|
||||||
|
|
||||||
# Optional: enable certificate rotation of the kubelet certificates.
|
# Optional: enable certificate rotation of the kubelet certificates.
|
||||||
ROTATE_CERTIFICATES="${ROTATE_CERTIFICATES:-}"
|
ROTATE_CERTIFICATES="${ROTATE_CERTIFICATES:-}"
|
||||||
|
|
||||||
|
@ -1178,7 +1178,6 @@ PROMETHEUS_TO_SD_ENDPOINT: $(yaml-quote ${PROMETHEUS_TO_SD_ENDPOINT:-})
|
|||||||
PROMETHEUS_TO_SD_PREFIX: $(yaml-quote ${PROMETHEUS_TO_SD_PREFIX:-})
|
PROMETHEUS_TO_SD_PREFIX: $(yaml-quote ${PROMETHEUS_TO_SD_PREFIX:-})
|
||||||
ENABLE_PROMETHEUS_TO_SD: $(yaml-quote ${ENABLE_PROMETHEUS_TO_SD:-false})
|
ENABLE_PROMETHEUS_TO_SD: $(yaml-quote ${ENABLE_PROMETHEUS_TO_SD:-false})
|
||||||
DISABLE_PROMETHEUS_TO_SD_IN_DS: $(yaml-quote ${DISABLE_PROMETHEUS_TO_SD_IN_DS:-false})
|
DISABLE_PROMETHEUS_TO_SD_IN_DS: $(yaml-quote ${DISABLE_PROMETHEUS_TO_SD_IN_DS:-false})
|
||||||
ENABLE_POD_PRIORITY: $(yaml-quote ${ENABLE_POD_PRIORITY:-})
|
|
||||||
CONTAINER_RUNTIME: $(yaml-quote ${CONTAINER_RUNTIME:-})
|
CONTAINER_RUNTIME: $(yaml-quote ${CONTAINER_RUNTIME:-})
|
||||||
CONTAINER_RUNTIME_ENDPOINT: $(yaml-quote ${CONTAINER_RUNTIME_ENDPOINT:-})
|
CONTAINER_RUNTIME_ENDPOINT: $(yaml-quote ${CONTAINER_RUNTIME_ENDPOINT:-})
|
||||||
CONTAINER_RUNTIME_NAME: $(yaml-quote ${CONTAINER_RUNTIME_NAME:-})
|
CONTAINER_RUNTIME_NAME: $(yaml-quote ${CONTAINER_RUNTIME_NAME:-})
|
||||||
|
@ -132,12 +132,6 @@ FEATURE_GATES="${KUBE_FEATURE_GATES:-ExperimentalCriticalPodAnnotation=true}"
|
|||||||
# Enable a simple "AdvancedAuditing" setup for testing.
|
# Enable a simple "AdvancedAuditing" setup for testing.
|
||||||
ENABLE_APISERVER_ADVANCED_AUDIT="${ENABLE_APISERVER_ADVANCED_AUDIT:-false}"
|
ENABLE_APISERVER_ADVANCED_AUDIT="${ENABLE_APISERVER_ADVANCED_AUDIT:-false}"
|
||||||
|
|
||||||
# Optional: enable pod priority
|
|
||||||
ENABLE_POD_PRIORITY="${ENABLE_POD_PRIORITY:-}"
|
|
||||||
if [[ "${ENABLE_POD_PRIORITY}" == "true" ]]; then
|
|
||||||
FEATURE_GATES="${FEATURE_GATES},PodPriority=true"
|
|
||||||
fi
|
|
||||||
|
|
||||||
# The number of services that are allowed to sync concurrently. Will be passed
|
# The number of services that are allowed to sync concurrently. Will be passed
|
||||||
# into kube-controller-manager via `--concurrent-service-syncs`
|
# into kube-controller-manager via `--concurrent-service-syncs`
|
||||||
CONCURRENT_SERVICE_SYNCS="${CONCURRENT_SERVICE_SYNCS:-}"
|
CONCURRENT_SERVICE_SYNCS="${CONCURRENT_SERVICE_SYNCS:-}"
|
||||||
|
@ -81,8 +81,6 @@ STORAGE_BACKEND=${STORAGE_BACKEND:-"etcd3"}
|
|||||||
STORAGE_MEDIA_TYPE=${STORAGE_MEDIA_TYPE:-""}
|
STORAGE_MEDIA_TYPE=${STORAGE_MEDIA_TYPE:-""}
|
||||||
# preserve etcd data. you also need to set ETCD_DIR.
|
# preserve etcd data. you also need to set ETCD_DIR.
|
||||||
PRESERVE_ETCD="${PRESERVE_ETCD:-false}"
|
PRESERVE_ETCD="${PRESERVE_ETCD:-false}"
|
||||||
# enable Pod priority and preemption
|
|
||||||
ENABLE_POD_PRIORITY_PREEMPTION=${ENABLE_POD_PRIORITY_PREEMPTION:-""}
|
|
||||||
|
|
||||||
# enable kubernetes dashboard
|
# enable kubernetes dashboard
|
||||||
ENABLE_CLUSTER_DASHBOARD=${KUBE_ENABLE_CLUSTER_DASHBOARD:-false}
|
ENABLE_CLUSTER_DASHBOARD=${KUBE_ENABLE_CLUSTER_DASHBOARD:-false}
|
||||||
@ -106,7 +104,7 @@ export KUBE_PANIC_WATCH_DECODE_ERROR
|
|||||||
|
|
||||||
# Default list of admission Controllers to invoke prior to persisting objects in cluster
|
# Default list of admission Controllers to invoke prior to persisting objects in cluster
|
||||||
# The order defined here does not matter.
|
# The order defined here does not matter.
|
||||||
ENABLE_ADMISSION_PLUGINS=${ENABLE_ADMISSION_PLUGINS:-"NamespaceLifecycle,LimitRanger,ServiceAccount,DefaultStorageClass,DefaultTolerationSeconds,MutatingAdmissionWebhook,ValidatingAdmissionWebhook,ResourceQuota"}
|
ENABLE_ADMISSION_PLUGINS=${ENABLE_ADMISSION_PLUGINS:-"NamespaceLifecycle,LimitRanger,ServiceAccount,DefaultStorageClass,DefaultTolerationSeconds,Priority,MutatingAdmissionWebhook,ValidatingAdmissionWebhook,ResourceQuota"}
|
||||||
DISABLE_ADMISSION_PLUGINS=${DISABLE_ADMISSION_PLUGINS:-""}
|
DISABLE_ADMISSION_PLUGINS=${DISABLE_ADMISSION_PLUGINS:-""}
|
||||||
ADMISSION_CONTROL_CONFIG_FILE=${ADMISSION_CONTROL_CONFIG_FILE:-""}
|
ADMISSION_CONTROL_CONFIG_FILE=${ADMISSION_CONTROL_CONFIG_FILE:-""}
|
||||||
|
|
||||||
@ -131,11 +129,6 @@ if [ "${CLOUD_PROVIDER}" == "openstack" ]; then
|
|||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# set feature gates if enable Pod priority and preemption
|
|
||||||
if [ "${ENABLE_POD_PRIORITY_PREEMPTION}" == true ]; then
|
|
||||||
FEATURE_GATES="${FEATURE_GATES},PodPriority=true"
|
|
||||||
fi
|
|
||||||
|
|
||||||
# warn if users are running with swap allowed
|
# warn if users are running with swap allowed
|
||||||
if [ "${FAIL_SWAP_ON}" == "false" ]; then
|
if [ "${FAIL_SWAP_ON}" == "false" ]; then
|
||||||
echo "WARNING : The kubelet is configured to not fail even if swap is enabled; production deployments should disable swap."
|
echo "WARNING : The kubelet is configured to not fail even if swap is enabled; production deployments should disable swap."
|
||||||
@ -493,13 +486,6 @@ function start_apiserver {
|
|||||||
if [[ -n "${NODE_ADMISSION}" ]]; then
|
if [[ -n "${NODE_ADMISSION}" ]]; then
|
||||||
security_admission=",NodeRestriction"
|
security_admission=",NodeRestriction"
|
||||||
fi
|
fi
|
||||||
if [ "${ENABLE_POD_PRIORITY_PREEMPTION}" == true ]; then
|
|
||||||
security_admission=",Priority"
|
|
||||||
if [[ -n "${RUNTIME_CONFIG}" ]]; then
|
|
||||||
RUNTIME_CONFIG+=","
|
|
||||||
fi
|
|
||||||
RUNTIME_CONFIG+="scheduling.k8s.io/v1alpha1=true"
|
|
||||||
fi
|
|
||||||
|
|
||||||
# Append security_admission plugin
|
# Append security_admission plugin
|
||||||
ENABLE_ADMISSION_PLUGINS="${ENABLE_ADMISSION_PLUGINS}${security_admission}"
|
ENABLE_ADMISSION_PLUGINS="${ENABLE_ADMISSION_PLUGINS}${security_admission}"
|
||||||
@ -554,6 +540,7 @@ EOF
|
|||||||
fi
|
fi
|
||||||
|
|
||||||
APISERVER_LOG=${LOG_DIR}/kube-apiserver.log
|
APISERVER_LOG=${LOG_DIR}/kube-apiserver.log
|
||||||
|
# shellcheck disable=SC2086
|
||||||
${CONTROLPLANE_SUDO} "${GO_OUT}/hyperkube" kube-apiserver "${authorizer_arg}" "${priv_arg}" ${runtime_config} \
|
${CONTROLPLANE_SUDO} "${GO_OUT}/hyperkube" kube-apiserver "${authorizer_arg}" "${priv_arg}" ${runtime_config} \
|
||||||
${cloud_config_arg} \
|
${cloud_config_arg} \
|
||||||
"${advertise_address}" \
|
"${advertise_address}" \
|
||||||
|
@ -173,7 +173,7 @@ else
|
|||||||
echo "$err"
|
echo "$err"
|
||||||
done
|
done
|
||||||
echo
|
echo
|
||||||
echo 'Please review the above warnings. You can test via "./hack/verify-shellcheck"'
|
echo 'Please review the above warnings. You can test via "./hack/verify-shellcheck.sh"'
|
||||||
echo 'If the above warnings do not make sense, you can exempt this package from shellcheck'
|
echo 'If the above warnings do not make sense, you can exempt this package from shellcheck'
|
||||||
echo 'checking by adding it to hack/.shellcheck_failures (if your reviewer is okay with it).'
|
echo 'checking by adding it to hack/.shellcheck_failures (if your reviewer is okay with it).'
|
||||||
echo
|
echo
|
||||||
|
Loading…
Reference in New Issue
Block a user