rancher/rke
1
0
Fork 0
mirror of https://github.com/rancher/rke.git synced 2025-08-10 11:13:44 +00:00
Code Issues Releases Wiki Activity

Make control node only unschedulable

Browse Source
This commit is contained in:
galal-hussein 2018-05-31 23:06:59 +02:00 committed by Alena Prokharchyk
parent aabce06714
commit 3c906a9ed2
7 changed files with 36 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
cluster/reconcile.go
View File

@ -16,7 +16,8 @@ import (
) )
const ( const (
unschedulableEtcdTaint = "node-role.kubernetes.io/etcd=true:NoExecute" unschedulableEtcdTaint = "node-role.kubernetes.io/etcd=true:NoExecute"
unschedulableControlTaint = "node-role.kubernetes.io/controlplane=true:NoExecute"
) )
func ReconcileCluster(ctx context.Context, kubeCluster, currentCluster *Cluster, updateOnly bool) error { func ReconcileCluster(ctx context.Context, kubeCluster, currentCluster *Cluster, updateOnly bool) error {
@ -72,6 +73,9 @@ func reconcileWorker(ctx context.Context, currentCluster, kubeCluster *Cluster,
if host.IsEtcd { if host.IsEtcd {
host.ToDelTaints = append(host.ToDelTaints, unschedulableEtcdTaint) host.ToDelTaints = append(host.ToDelTaints, unschedulableEtcdTaint)
} }
if host.IsControl {
host.ToDelTaints = append(host.ToDelTaints, unschedulableControlTaint)
}
} }
return nil return nil
} }

16
services/workerplane.go
View File

@ -11,7 +11,8 @@ import (
) )
const ( const (
unschedulableEtcdTaint = "node-role.kubernetes.io/etcd=true:NoExecute" unschedulableEtcdTaint = "node-role.kubernetes.io/etcd=true:NoExecute"
unschedulableControlTaint = "node-role.kubernetes.io/controlplane=true:NoExecute"
) )
func RunWorkerPlane(ctx context.Context, allHosts []*hosts.Host, localConnDialerFactory hosts.DialerFactory, prsMap map[string]v3.PrivateRegistry, workerNodePlanMap map[string]v3.RKEConfigNodePlan, certMap map[string]pki.CertificatePKI, updateWorkersOnly bool, alpineImage string) error { func RunWorkerPlane(ctx context.Context, allHosts []*hosts.Host, localConnDialerFactory hosts.DialerFactory, prsMap map[string]v3.PrivateRegistry, workerNodePlanMap map[string]v3.RKEConfigNodePlan, certMap map[string]pki.CertificatePKI, updateWorkersOnly bool, alpineImage string) error {
@ -23,9 +24,16 @@ func RunWorkerPlane(ctx context.Context, allHosts []*hosts.Host, localConnDialer
continue continue
} }
} }
if !host.IsControl && !host.IsWorker { if !host.IsWorker {
// Add unschedulable taint if host.IsEtcd {
host.ToAddTaints = append(host.ToAddTaints, unschedulableEtcdTaint) // Add unschedulable taint
host.ToAddTaints = append(host.ToAddTaints, unschedulableEtcdTaint)
}
if host.IsControl {
// Add unschedulable taint
host.ToAddTaints = append(host.ToAddTaints, unschedulableControlTaint)
}
} }
runHost := host runHost := host
// maps are not thread safe // maps are not thread safe

3
templates/calico.go
View File

@ -183,8 +183,9 @@ spec:
operator: Exists operator: Exists
- effect: NoExecute - effect: NoExecute
operator: Exists operator: Exists
- key: "node-role.kubernetes.io/master" - key: "node-role.kubernetes.io/controlplane"
operator: "Exists" operator: "Exists"
effect: "NoExecute"
- key: "node-role.kubernetes.io/etcd" - key: "node-role.kubernetes.io/etcd"
operator: "Exists" operator: "Exists"
effect: "NoExecute" effect: "NoExecute"

3
templates/canal.go
View File

@ -240,8 +240,9 @@ spec:
operator: Exists operator: Exists
- effect: NoExecute - effect: NoExecute
operator: Exists operator: Exists
- key: "node-role.kubernetes.io/master" - key: "node-role.kubernetes.io/controlplane"
operator: "Exists" operator: "Exists"
effect: "NoExecute"
- key: "node-role.kubernetes.io/etcd" - key: "node-role.kubernetes.io/etcd"
operator: "Exists" operator: "Exists"
effect: "NoExecute" effect: "NoExecute"

4
templates/flannel.go
View File

@ -148,9 +148,9 @@ spec:
mountPath: /host/opt/cni/bin/ mountPath: /host/opt/cni/bin/
hostNetwork: true hostNetwork: true
tolerations: tolerations:
- key: node-role.kubernetes.io/master - key: node-role.kubernetes.io/controlplane
operator: Exists operator: Exists
effect: NoSchedule effect: NoExecute
- key: node-role.kubernetes.io/etcd - key: node-role.kubernetes.io/etcd
operator: Exists operator: Exists
effect: NoExecute effect: NoExecute

7
templates/job-deployer.go
View File

@ -14,6 +14,13 @@ spec:
metadata: metadata:
name: pi name: pi
spec: spec:
tolerations:
- key: node-role.kubernetes.io/controlplane
operator: Exists
effect: NoExecute
- key: node-role.kubernetes.io/etcd
operator: Exists
effect: NoExecute
hostNetwork: true hostNetwork: true
serviceAccountName: rke-job-deployer serviceAccountName: rke-job-deployer
nodeName: {{$nodeName}} nodeName: {{$nodeName}}

6
templates/weave.go
View File

@ -96,6 +96,12 @@ items:
seLinuxOptions: {} seLinuxOptions: {}
serviceAccountName: weave-net serviceAccountName: weave-net
tolerations: tolerations:
- key: "node-role.kubernetes.io/controlplane"
operator: "Exists"
effect: "NoExecute"
- key: "node-role.kubernetes.io/etcd"
operator: "Exists"
effect: "NoExecute"
- effect: NoExecute - effect: NoExecute
operator: Exists operator: Exists
volumes: volumes: