rancher/rke
1
0
Fork 0
mirror of https://github.com/rancher/rke.git synced 2025-06-30 01:02:22 +00:00
Code Issues Releases Wiki Activity
1,224 Commits 44 Branches 738 Tags 692 MiB
265553beb5
Commit Graph

99 Commits

Author SHA1 Message Date
XianglongLuo
329b6b522e Fix for deleting unused etcd and kubelet certs 2020-02-20 08:21:52 +08:00
Prachi Damle
d56f641cdd Drop the log level to Debug since rancher can call this everytime worker connects back every ~2 mins 2020-01-15 16:29:38 -08:00
Sebastiaan van Steenis
adc5941fd9 Add per node kubelet server certificate 2019-10-31 15:56:44 -07:00
Dax McDonald
ad678b6a32 Remove dead code 2019-10-04 15:02:14 -07:00
chentanjun
1cb850d7cf gosimple code 2019-10-03 12:29:56 -07:00
Sebastiaan van Steenis
d6b29c9ccc Do not fetch kube-admin certificate from host(s) 2019-09-06 13:31:40 -07:00
galal-hussein
798632b3a4 Handle missing request header ca in rotate certificate 2019-08-29 13:42:47 -07:00
Frank Mai
277797df0f Support to generate Windows worker plan 
- Put Windows worker plan generating back to reduce the changing from
Windows on rancher/rancher
- Prepare for rke bootstraps Windows cluster

**Issue:**
https://github.com/rancher/rancher/issues/16460
 2019-08-21 20:50:31 -07:00
Darren Shepherd
f8bac2c059 Update to new certs package since latest k8s dropped it 2019-08-19 11:02:43 -07:00
Sebastiaan van Steenis
3f94e86706 Revert "Add per node kubelet server certificate" 
This reverts commit b860e634db.
 2019-08-08 09:49:47 -07:00
Sebastiaan van Steenis
b860e634db Add per node kubelet server certificate 2019-07-31 14:54:43 -07:00
moelsayed
688d4aedd7 support etcd custom uid/gid 2019-07-29 17:24:16 -07:00
Murali Paluru
9697b3c452 Adding extensions for extended key usage 2019-07-02 10:22:35 -07:00
Sebastiaan van Steenis
173669c8a5 Add retry logic to Docker interactions 2019-06-26 12:15:32 -07:00
moelsayed
38c31b9766 Add option to pass custom CA certificate for S3 backend 2019-06-20 15:00:00 -07:00
galal-hussein
8816a75b93 Fix for regenerating etcd certs 2019-05-29 15:44:37 -07:00
Erik Wilson
8ccb192aaa Check for etcd cert DNS or IPs change 2019-05-24 09:12:39 -07:00
galal-hussein
4d47a376ad Regenerate etcd certificate from legacy cluster 2019-03-19 20:43:29 -07:00
galal-hussein
9fccbfa08e Prevent panic when ca cert is not found 2019-03-18 14:09:01 -07:00
galal-hussein
c1372bc797 Fetch certificates and state from nodes for legacy cluster 2019-03-18 12:59:52 -07:00
galal-hussein
2aac0e475f Regenerate requestheader ca for legacy clusters 2019-03-06 11:58:24 -08:00
moelsayed
e3d6fb4db9 Restore backup to a new etcd plane 2019-03-06 09:22:52 -08:00
galal-hussein
556e5bb678 Avoid creating dangling volumes with rke tools 2019-01-21 12:38:58 -08:00
galal-hussein
a905a6df80 Fix rotation for service components 2019-01-21 09:53:36 -08:00
galal-hussein
82fa8d6305 Add restart components to custom certs 2019-01-14 11:51:11 -08:00
galal-hussein
9ee750ec01 Adding csr generation and custom certs 2019-01-09 11:47:53 -08:00
galal-hussein
4d23fb4288 Return api and client certs to rotate certs 2018-12-18 16:35:20 -08:00
galal-hussein
ff4c93e179 refactor etcd restoration process 2018-11-30 12:48:41 -08:00
galal-hussein
11aa0caabc Fix rotate certificates with new state 2018-11-14 05:15:57 +08:00
galal-hussein
696b61679c Final fixes and cleanup for state management 
Fix dind and local and etcd snapshots

add ExternalFlags and dialer options
 2018-11-09 11:16:17 -08:00
galal-hussein
8b8870311b refactor the build state 
remove extra cert generation for etcd in reconcile

fix reconcile and etcd add and remove cluster state with rke remove

fix add/remove issues

Fix the up command

Fix default paths for kubeconfig and rkestate
 2018-11-09 11:16:17 -08:00
galal-hussein
3551e6e4b6 Add Rotate certificates command to rke 2018-10-31 12:08:31 -07:00
moelsayed
dd4faabd6c handle new not found err in docker 2018-10-26 21:46:20 -07:00
galal-hussein
4fb01ab69e Fix scaling problems with cluster state deployer 2018-10-18 10:34:32 -07:00
galal-hussein
925df98ea6 Save state to the nodes backup path 2018-09-14 18:30:40 -07:00
Jess Males
22457607ea append clusterName to user and context so as to allow multiple kubeconfig files 2018-08-15 00:36:58 +03:00
galal-hussein
5dd253a611 Remove trailing slash from tmp cert path 2018-07-30 16:47:20 -07:00
Massimo Cannavo
7a5d4390d8
Fixed snapshot restore unable to archive pki bundle 
Fixed TempCertPath on extract of pki bundle

Fixed Extract & Save of pki bundle by removing PrefixPath
 2018-07-30 14:12:22 -07:00
galal-hussein
b71fd3ba35 Fix local port check 2018-07-23 09:10:06 -07:00
Thorsten Schifferdecker
9766b4cbcd fix typo porxy > proxy 
Signed-off-by: Thorsten Schifferdecker <ts@systs.org>
 2018-07-22 08:36:34 -07:00
galal-hussein
3ce50d28d3 Add etcd snapshot fix and more log messages to certificate bundle 
Add function to collect stdout and stderr logs from containers
 2018-07-20 14:09:29 -07:00
Massimo Cannavo
6d36c9a73f Fixed ssl directory for rke-bundle-cert container 
Replaced temp cert path with var
 2018-07-18 13:28:46 -07:00
galal-hussein
8269c3f301 Add metrics-server addon deployment 2018-07-17 16:51:59 -07:00
orangedeng
9f7a37845e Add support for API aggregation layer 
Add API server parameters
`requestheader-client-ca-file`,
`requestheader-allowed-names`,
`proxy-client-key-file` and
`proxy-client-cert-file`.
After we added this parameters into API server, the API aggregation
server will be supported when it is deployed in rke cluster.
 2018-07-17 16:51:59 -07:00
galal-hussein
8a52e0d8dc make sure tmp dir path exists before saving cert bundle 
stop taking bundle certs when the tmp directory is empty
 2018-06-26 20:15:57 -07:00
galal-hussein
1f8113428e restore certificates to at least on etcd/control plane 2018-06-20 11:01:07 -07:00
galal-hussein
2da8682463 Add certificate bundle backup with etcd snapshot-save 2018-06-07 16:40:41 -07:00
galal-hussein
a3416e6b92 Etcd Backup/restore 2018-05-09 19:39:19 +02:00
moelsayed
a2d985ef46 Handle missing backup kube-etcd gracefully 2018-04-25 11:37:31 -07:00
Darren Shepherd
4273d1d874 Use new rke-tools image 2018-04-19 08:53:55 -07:00