rancher/rke
1
0
Fork 0
mirror of https://github.com/rancher/rke.git synced 2025-07-19 09:46:38 +00:00
Code Issues Releases Wiki Activity
2,119 Commits 42 Branches 742 Tags 732 MiB
adaec2efa7
Commit Graph

667 Commits

Author SHA1 Message Date
galal-hussein
fa332f7e07 Revert "revert to skip network plugin port checks of udp port" 
This reverts commit ea4b16b116.

Revert "Add port checks for network plugins"
This reverts commit c73a58d45c.
 2019-01-28 11:12:42 -08:00
Guangbo Chen
ea4b16b116 revert to skip network plugin port checks of udp port 2019-01-28 09:48:06 -08:00
galal-hussein
860058e878 Check if etcd is healthy before running kubeapi 2019-01-25 16:00:04 -08:00
Mark Lee
c0ee3327ba advertise address on kube-apiserver by internal_address 2019-01-25 11:23:14 -08:00
Sebastiaan van Steenis
4cbca1e90a Add CoreDNS as addon 2019-01-25 11:12:46 -08:00
Guangbo Chen
c73a58d45c Add port checks for network plugins 2019-01-24 13:29:26 -08:00
galal-hussein
f53e30adec Add disable option for metrics server 2019-01-24 12:15:47 -08:00
Jason Greathouse
a64e8f64fb honor kubernetes_version setting 2019-01-24 11:34:07 -08:00
galal-hussein
556e5bb678 Avoid creating dangling volumes with rke tools 2019-01-21 12:38:58 -08:00
moelsayed
cf037b1ed6 Allow local backup for rancher 2019-01-15 10:07:18 -08:00
galal-hussein
82fa8d6305 Add restart components to custom certs 2019-01-14 11:51:11 -08:00
Jason Greathouse
6d36ba86e9 AlwaysPullImages admission plugin option 2019-01-09 11:49:33 -08:00
galal-hussein
9ee750ec01 Adding csr generation and custom certs 2019-01-09 11:47:53 -08:00
galal-hussein
e79da956e9 Update rke to v1.13 and add versioned templates for calico and canal 2019-01-08 13:52:40 -08:00
Jason Greathouse
7afa6e927e update k8s defaults, CIS recommendations 2019-01-07 12:07:46 -08:00
moelsayed
2bf2cd8f5b Don't remove Ready nodes during restore 2019-01-04 14:26:40 -08:00
Guangbo Chen
9cfe5661d8 add etcd s3 uploading and downloading snapshot feature 2019-01-04 13:54:14 -08:00
Erik Wilson
e04b7d4413 Add support for Kubernetes API Authn Webhook 
Allow multiple authn strategies to be defined, including new 'webhook'
strategy. Webhook strategy configuration contains the contents of the
authentication webhook file as well as the cache timeout period.

This change allows a Kubernetes API Auth service to authenticate
user requests without proxying through the Rancher server.
 2019-01-03 17:15:23 -07:00
galal-hussein
3c6c7f1b7b Run rebuild cluster certs from clusterup 2018-12-20 14:04:47 -08:00
galal-hussein
4d23fb4288 Return api and client certs to rotate certs 2018-12-18 16:35:20 -08:00
galal-hussein
66fb2c4ac0 Get checksum of the cloud file content 2018-12-06 16:23:20 -08:00
Chris Kim
afaad6c824 Adding ability to set cluster network to none 2018-12-03 11:34:18 -08:00
galal-hussein
ff4c93e179 refactor etcd restoration process 2018-11-30 12:48:41 -08:00
Mike Kelley
5941368767 add support for weave password 2018-11-29 16:39:45 -08:00
galal-hussein
f3bbd81c52 Update etcd save/restore to work with new state managemnet 2018-11-27 11:09:56 -08:00
galal-hussein
11aa0caabc Fix rotate certificates with new state 2018-11-14 05:15:57 +08:00
moelsayed
b67a67c3bb Force lowercase node names 2018-11-14 04:54:35 +08:00
galal-hussein
696b61679c Final fixes and cleanup for state management 
Fix dind and local and etcd snapshots

add ExternalFlags and dialer options
 2018-11-09 11:16:17 -08:00
moelsayed
6da35256a8 handle upgrade cases 
backup state to kubernetes
 2018-11-09 11:16:17 -08:00
galal-hussein
8b8870311b refactor the build state 
remove extra cert generation for etcd in reconcile

fix reconcile and etcd add and remove cluster state with rke remove

fix add/remove issues

Fix the up command

Fix default paths for kubeconfig and rkestate
 2018-11-09 11:16:17 -08:00
moelsayed
90fd13db65 Update main code path to use new state 2018-11-09 11:16:17 -08:00
galal-hussein
f48da22d8e init commit for refactor state 
add init test

use rkeconfig for init

reconcile old state file
 2018-11-09 11:16:17 -08:00
galal-hussein
631c0725f4 Fix broken etcd rolling snapshot 2018-11-08 13:14:15 -08:00
galal-hussein
f0572f48b4 Fix etcd snapshot 2018-11-07 12:43:25 -08:00
galal-hussein
deb3518d78 Enable etcd snapshot by default 2018-11-02 09:35:57 -07:00
galal-hussein
3551e6e4b6 Add Rotate certificates command to rke 2018-10-31 12:08:31 -07:00
moelsayed
dd4d19a945 Fix remove performance issues 2018-10-24 10:24:14 -07:00
moelsayed
b7d98733cf Run state save in a worker pool 2018-10-19 17:24:02 -07:00
moelsayed
90c426d73e Switch all concurrent tasks to use worker pool 2018-10-18 13:24:59 -07:00
galal-hussein
4fb01ab69e Fix scaling problems with cluster state deployer 2018-10-18 10:34:32 -07:00
Sebastiaan van Steenis
22a339ea33 Update to Golang 1.11 2018-10-18 09:27:46 -07:00
Sebastiaan van Steenis
a161d30f78 Added info in log messages, more consistency in log messages 2018-10-18 09:27:13 -07:00
galal-hussein
c2071495ac use errgroup for tunneling hosts 2018-10-18 09:26:30 -07:00
moelsayed
24a8465941 Fix flannel issue with k8s 1.12 2018-10-18 09:26:17 -07:00
galal-hussein
cf76401978 Change the etcd member add steps 2018-10-18 09:25:59 -07:00
moelsayed
9c85b5b451 Refactor taints and labels sync to improve performance 2018-10-18 09:25:27 -07:00
moelsayed
22dc19205f Handle upgrade from metrics server 0.2.x to 0.3.x 2018-10-04 14:48:00 -07:00
moelsayed
496d1a46a5 Allow replacing a single contorl node 2018-10-04 13:14:28 -07:00
Sebastiaan van Steenis
12559a21c7 Use clusterversion to check supported Docker versions 2018-10-04 11:31:35 -07:00
moelsayed
d4759bcc4f Remove ServiceOption if empty 2018-10-02 12:58:21 -07:00
galal-hussein
ce62c898bb Handle deleting all controlplane nodes when nodes are unreachable 2018-09-26 17:03:53 -07:00
galal-hussein
2bd4577b19 Add default heartbeat and election timeout to etcd 
Reload the etcd cluster in the right order
 2018-09-25 18:24:52 -07:00
galal-hussein
95ba4ea61f Fix cluster state network port check issue 2018-09-20 10:26:25 -07:00
galal-hussein
925df98ea6 Save state to the nodes backup path 2018-09-14 18:30:40 -07:00
galal-hussein
00e317250d Fix requestheaqder ca certificate regeneration 2018-09-07 18:29:00 -07:00
galal-hussein
67448c38c6 Update ingress nginx template yaml 2018-09-06 15:57:51 -07:00
galal-hussein
453ddd5213 Remove unnecessary output 2018-09-06 12:55:05 -07:00
galal-hussein
f314d1dc96 Avoid panic if cert or key of a secret is not found 2018-09-04 13:10:13 -07:00
galal-hussein
3c76263096 Add default option to private registries 2018-08-31 14:56:57 -07:00
moelsayed
6b6a7803a7 Move admission controller options to ServiceOptions 2018-08-30 14:52:30 -07:00
galal-hussein
6b141295aa update log message for validate node count 2018-08-30 10:00:38 -07:00
moelsayed
d451683abb Add docker config file environment variables for kubelet 2018-08-30 10:00:28 -07:00
moelsayed
4b3068d673 Validate hostname_override values 2018-08-28 11:40:42 +10:00
MaiWJ
bcb6e13618 Extend rke to tolerate the Windows host 
1. Support to configure Flannel as "host-gw" backend
2. Define the network component yaml and ingress
   controller yaml only schedule to non-Windows node
3. Support to configure Docker container's port publishing
 2018-08-26 18:09:21 -07:00
Sebastiaan van Steenis
4bb01e8f6b Correct metrics YAML variable name 2018-08-14 21:57:43 +03:00
Sebastiaan van Steenis
4f0a191e44 Typo valid 2018-08-14 21:57:31 +03:00
Sebastiaan van Steenis
bff7e0a2c3 Avoid panic in rke-tools entrypoint detection 2018-08-09 09:25:25 -07:00
moelsayed
de617da470 Fix entrypoint bug 2018-08-05 19:57:52 -07:00
moelsayed
4357da7742 handle entrypoint upgrade across versions 2018-08-04 04:30:54 -07:00
Denise
16e63092f9
Merge pull request #836 from moelsayed/change_entrypoint 
Fix sidekick upgrade issue and change services entry point
 2018-08-03 11:38:45 -07:00
moelsayed
39b5ac1345 Fix resoncile missing taints 2018-08-03 11:38:02 -07:00
moelsayed
010a7977ff Change entrypoint to fix multiple mount problem 2018-08-02 02:33:46 +02:00
moelsayed
28db358ebd Fix nested mounts issue when using default host prefix 2018-08-01 11:26:42 -07:00
moelsayed
5ec490da11 Increase addon delete job timeout 2018-07-27 11:33:38 -07:00
galal-hussein
b71fd3ba35 Fix local port check 2018-07-23 09:10:06 -07:00
Thorsten Schifferdecker
9766b4cbcd fix typo porxy > proxy 
Signed-off-by: Thorsten Schifferdecker <ts@systs.org>
 2018-07-22 08:36:34 -07:00
galal-hussein
3ce50d28d3 Add etcd snapshot fix and more log messages to certificate bundle 
Add function to collect stdout and stderr logs from containers
 2018-07-20 14:09:29 -07:00
Chase Bolt
82af829b8c adjust volumeplugins to a non-persistent path that will work oob with default configs 2018-07-20 13:21:36 -07:00
moelsayed
2eeb5cac00 Make sure Binds are unique 2018-07-19 15:12:09 -07:00
David Lewis
ecd92ceff6 Set 644 on cloud-config 2018-07-18 11:43:17 -07:00
galal-hussein
8269c3f301 Add metrics-server addon deployment 2018-07-17 16:51:59 -07:00
orangedeng
9f7a37845e Add support for API aggregation layer 
Add API server parameters
`requestheader-client-ca-file`,
`requestheader-allowed-names`,
`proxy-client-key-file` and
`proxy-client-cert-file`.
After we added this parameters into API server, the API aggregation
server will be supported when it is deployed in rke cluster.
 2018-07-17 16:51:59 -07:00
moelsayed
241f7857d6 Remove ingress controller when disabled 2018-07-17 15:55:15 -07:00
Sebastiaan van Steenis
af77619859 GetAddonsExcuteJob and ApplySystemAddonExcuteJob typos 2018-07-17 09:49:49 -07:00
Chase Bolt
f9ecba0ab2 adjust kubelet volume-plugin-dir to match root-dir 2018-07-11 12:55:46 -07:00
moelsayed
d155cc8e76 Allow etcd parameters to be overridden 2018-07-06 13:32:08 -07:00
Sebastiaan van Steenis
f7814a5e8a Set cluster-cidr on kube-proxy 2018-06-29 13:19:38 -07:00
moelsayed
48faa8bf35 Remove container dead log links on cluster remove 2018-06-29 11:32:08 -07:00
Sebastiaan van Steenis
1da390d846 Add hostname-override to kube-proxy 2018-06-29 11:31:58 -07:00
Sebastiaan van Steenis
c4f12c8b0d Better error when ssh_key_path can't be opened 2018-06-29 11:27:56 -07:00
moelsayed
39e846442b Fix container log location for ros 2018-06-29 10:49:49 -07:00
moelsayed
fdba4f86e5 Fix reconcile for ros prefix 2018-06-25 17:22:32 -07:00
galal-hussein
a75e3d693c Register controlplane node with taint 2018-06-21 23:41:52 -07:00
galal-hussein
fc48d82392 Change controlplane taint to NoSchedule 2018-06-21 21:08:36 -07:00
galal-hussein
1f8113428e restore certificates to at least on etcd/control plane 2018-06-20 11:01:07 -07:00
moelsayed
4c30f1a28d restart related k8s services when cloud provider config is updated 2018-06-13 09:21:58 -07:00
moelsayed
af9ab4fb94 Add endpoint-reconciler support 2018-06-13 09:19:39 -07:00
moelsayed
2f28cb24ee Add support for addons upgrades 2018-06-12 13:18:19 -07:00
Sebastiaan van Steenis
b72f4b2c70 Ability to add extra environment variables to services 2018-06-08 09:45:45 -07:00
galal-hussein
2da8682463 Add certificate bundle backup with etcd snapshot-save 2018-06-07 16:40:41 -07:00
galal-hussein
f6d391b664 Remove check for control plane to etcd plane on port 2380 2018-06-07 16:25:16 -07:00
Sebastiaan van Steenis
b6ba732816 Improve port check error message 2018-06-07 11:29:28 -07:00
moelsayed
716a776d42 Add service-node-port-range for kube-api 2018-06-06 14:27:06 -07:00
galal-hussein
2142661ea7 Refactor cloud provider support 2018-06-06 10:22:50 -07:00
galal-hussein
3c906a9ed2 Make control node only unschedulable 2018-05-31 15:43:30 -07:00
Sebastiaan van Steenis
aabce06714 Get latest logline if healthcheck fails 2018-05-29 15:27:22 -07:00
galal-hussein
4b4ec352ae Change backup to snapshot in etcd 2018-05-18 00:34:12 +02:00
galal-hussein
08358c85cd Add weave loopback binary 2018-05-16 17:35:17 -07:00
galal-hussein
db3bda1191 fix rhel and centos regression 2018-05-15 14:08:29 -07:00
galal-hussein
21ee619645 Fix override prefix path for ROS, B2D, and CoreOS 2018-05-14 21:14:28 -07:00
galal-hussein
f75ab86027 Fix etcd restore issue 2018-05-14 21:13:36 -07:00
galal-hussein
2c64afeb3e Add prefix path for CoreOS 2018-05-10 18:24:57 -07:00
moelsayed
5fdc6c28cc Override service level defined images 2018-05-10 18:22:41 -07:00
galal-hussein
aff01a9267 Bastion host 2018-05-10 00:16:04 +02:00
moelsayed
9addf796a2 Critical and non-critical addons 
Configurable addon job timeout
 2018-05-09 23:44:19 +02:00
Alena Prokharchyk
47ddb6ee41
Merge pull request #548 from galal-hussein/etcd_backup 
etcd backup/restore
 2018-05-09 10:48:34 -07:00
galal-hussein
a3416e6b92 Etcd Backup/restore 2018-05-09 19:39:19 +02:00
moelsayed
b05faf9f4a Fix empty default calico cloud provider 2018-05-09 01:53:51 +02:00
Alena Prokharchyk
9e32c532e8
Merge pull request #574 from moelsayed/container_labels 
Container labels
 2018-05-08 15:16:22 -07:00
moelsayed
d42ead8e11 Add container name labels 2018-05-08 19:47:12 +02:00
galal-hussein
dd403b2769 Add more log info when deleting k8s nodes 2018-05-05 00:07:30 +02:00
Hussein Galal
6ccf22d912
Merge pull request #561 from galal-hussein/fix_rbac_disabled 
Fix health check when RBAC is disabled
 2018-05-03 23:13:44 +02:00
Hussein Galal
f81e1d5c16
Merge pull request #570 from superseb/debug_loglength 
Fix debug message on count of container log lines
 2018-05-03 23:12:41 +02:00
Hussein Galal
1bfd18e0e2
Merge pull request #573 from galal-hussein/add_api_servercount 
Add api server count flag to kube-apiserver
 2018-05-03 23:11:20 +02:00
galal-hussein
28e167aa5d Add api server count flag to kube api 2018-05-03 21:37:44 +02:00
Sebastiaan van Steenis
516fd63790 Fix debug message on count of container log lines 2018-05-03 01:20:56 +02:00
Sebastiaan van Steenis
9498c80cc7 Add etcd env vars for etcdctl 2018-05-02 13:47:53 +02:00
galal-hussein
35624c98a1 Fix healthcheck when RBAC is disabled 2018-05-01 02:25:52 +02:00
galal-hussein
7cbc978489 Skip cloud config parameter with aws cloud provider 2018-04-27 09:58:27 -07:00
galal-hussein
657f38b9f0 Update canal and calico to 3.1.1 2018-04-26 05:10:53 +02:00
galal-hussein
cefe16eb78 Pass docker info to host in generate plan 2018-04-25 16:28:29 -07:00
moelsayed
a2d985ef46 Handle missing backup kube-etcd gracefully 2018-04-25 11:37:31 -07:00
Sebastiaan van Steenis
6431e8495d Add /usr and /etc readonly to kubelet for os-release 2018-04-24 15:27:16 -07:00
David Lewis
253392a1a6 Always write cloud config 2018-04-24 15:24:04 -07:00
moelsayed
4508d11401 Make cni directories rw 2018-04-24 15:23:39 -07:00
moelsayed
c467584f8f Get certificates for active etcd servers only 2018-04-22 14:32:45 -07:00
moelsayed
e5c2c86b65 Ensure nginx proxy is upgradable if control hosts change 2018-04-22 14:29:13 -07:00
Darren Shepherd
f9200e21bf Grab default from types 2018-04-20 19:07:00 -07:00
moelsayed
0069872976 Fix etcd client endpoint address 2018-04-20 15:46:32 -07:00
moelsayed
fb1fd833ce Deploy backup certificates on full plane instead of single node 2018-04-20 15:46:32 -07:00
moelsayed
f1e39f9b10 Fix etcd listen address edge case when public address is DNATed 2018-04-20 15:46:32 -07:00
moelsayed
d11221c604 Bump default k8s to v1.10 2018-04-20 15:42:06 -07:00
Alena Prokharchyk
71bafd1f08
Merge pull request #505 from superseb/etcd_listenaddress 
Let etcd only listen on advertised url
 2018-04-19 13:37:07 -07:00
Alena Prokharchyk
dc862ed56d
Merge pull request #523 from superseb/portcheck_timeout 
Portcheck timeout
 2018-04-19 13:35:58 -07:00
Alena Prokharchyk
d49016714a
Merge pull request #524 from ibuildthecloud/master 
WIP Use new rke-tools image
 2018-04-19 11:07:22 -07:00
Darren Shepherd
dd9f37dbee Don't mask error 2018-04-19 08:54:15 -07:00
Darren Shepherd
4273d1d874 Use new rke-tools image 2018-04-19 08:53:55 -07:00
Sebastiaan van Steenis
74d38c4552 Set timeout on portchecker 2018-04-19 16:03:14 +02:00
moelsayed
c490a0b989 remove path prefix from /var/lib/rancher bind 2018-04-18 14:45:14 -07:00
moelsayed
a8b0cf052d Handle non-semver k8s images 2018-04-18 00:04:24 -07:00
Darren Shepherd
9ab1035852 Always try to pull 2018-04-17 23:43:06 -07:00
moelsayed
275ba147bc Fix version panic 
Fix version confilict
 2018-04-17 20:27:21 -07:00
moelsayed
b057fc322a bind /var/lib/rancher in kubelet 2018-04-18 03:29:20 +02:00
Alena Prokharchyk
89e7d8933d
Merge pull request #513 from moelsayed/k8s_image 
Kubernetes system image takes precedence over cluster kubernetes version
 2018-04-17 16:54:08 -07:00
moelsayed
9a243ac091 Use kubernetes major version for service options 2018-04-18 01:43:58 +02:00
moelsayed
2eda9fe990 Kubernetes system image takes precedence over cluster kubernetes version 2018-04-17 22:46:36 +02:00
rawmind0
14c239c598 Added extra_args type map[string]string to ingress-controller. Added rancher-minimal-ssl.yml and rancher-minimal-passthrough.yml to deploy rancher v2.0 using rke. Updated README.md 2018-04-16 16:46:13 -07:00
Sebastiaan van Steenis
df3e75b1b5 Let etcd only listen on advertised url 2018-04-16 10:08:27 +02:00
galal-hussein
b3f457426c Fix multiple etcd add at runtime 2018-04-14 22:59:33 -07:00
Darren Shepherd
829afa1084 Fix missing image for etcd only nodes 2018-04-14 10:25:50 -07:00
galal-hussein
a4aa5c8192 Change kubelet to rslave 2018-04-11 16:37:56 -07:00
galal-hussein
825bbbdf71 Add prefix path to services and generate plan 2018-04-12 00:54:47 +02:00
moelsayed
493d296c28 Add k8s services options based on k8s version 2018-04-11 19:28:26 +02:00
Sebastiaan van Steenis
2ca8e6421a Change to canal as default network plugin 2018-04-05 19:23:42 -07:00
galal-hussein
4136d82916 Add role labels to node plan 2018-04-04 03:23:26 -07:00
moelsayed
78bff1ebc9 Add AuthConfig to proceses 
Refactor registry auth
 2018-04-04 00:01:46 +02:00
galal-hussein
915ce9ad29 Add address annotation to the node plan 
Adding labels to nod plan
 2018-04-03 12:38:37 -07:00
Alena Prokharchyk
0156dbc480
Merge pull request #472 from galal-hussein/fix_aws_node_removal 
Add get node for delete and cordon
 2018-04-02 15:53:48 -07:00
galal-hussein
7c0f3f6e57 Add get node for delete and cordon 2018-04-03 00:34:15 +02:00
Alena Prokharchyk
0503bb87ec
Merge pull request #470 from galal-hussein/set_cert_paths 
Set cluster certificate paths
 2018-04-02 15:18:55 -07:00
galal-hussein
79eaedfa26 Update cluster network and cloud provider options 2018-04-02 23:28:40 +02:00
galal-hussein
41599bf24f Set cluster certificate paths 2018-04-02 20:36:40 +02:00
Darren Shepherd
826b75eeaa Fix log message 2018-04-02 04:03:43 -07:00
Darren Shepherd
b841604933 Revert "Make etcd provisioning a public API" 
This reverts commit d2c58fb8e6.
 2018-04-02 04:03:43 -07:00
Darren Shepherd
aed76eb7e3 Default the docker info 2018-03-31 04:00:50 -07:00
Darren Shepherd
d2c58fb8e6 Make etcd provisioning a public API 2018-03-31 04:00:50 -07:00
Darren Shepherd
149f866c47 Fix panic 2018-03-31 04:00:50 -07:00
Alena Prokharchyk
9a22edbfc3
Merge pull request #463 from galal-hussein/fix_kubeapi_param 
fix kubelet and kubeapi params
 2018-03-30 15:48:15 -07:00
galal-hussein
fdbb4bb03b fix kubelet and kubeapi params 2018-03-31 00:43:34 +02:00
Alena Prokharchyk
329a946600
Merge pull request #460 from HighwayofLife/waiting_for_container 
Add host to wait for container check
 2018-03-30 15:23:01 -07:00
moelsayed
30498c4f5b fix typo 2018-03-30 20:00:19 +02:00
David Lewis
c2ad3d5c4d Add host to wait for container check 2018-03-30 10:28:03 -07:00
Alena Prokharchyk
228423358a
Merge pull request #452 from galal-hussein/strong_types 
Network and cloud provider types for rke
 2018-03-29 14:00:21 -07:00
galal-hussein
b431a22a9c Add cloud and network provider types 2018-03-29 22:58:46 +02:00
galal-hussein
64b8b4a6a1 Change cluster cidr defaults 2018-03-29 21:51:35 +02:00
Alena Prokharchyk
024765a818
Merge pull request #449 from galal-hussein/azure_provider 
Add azure cloud provider
 2018-03-28 13:46:05 -07:00
galal-hussein
3694d16212 Add Azure cloud provider 2018-03-28 21:46:28 +02:00
David Lewis
ca4908ff69 Fix #447 golint 2018-03-27 14:32:13 -07:00
galal-hussein
5b848a2b45 Set node-ip and addresses annotations 2018-03-27 00:53:28 +02:00
moelsayed
fcdeca19f0 Make sure we properly separate included addon manifests 2018-03-23 20:36:55 -07:00
Alena Prokharchyk
8b8bc8ab8b
Merge pull request #437 from moelsayed/tune_update_only 
Update only for pre-pull and log cleanup
 2018-03-23 17:49:46 -07:00
galal-hussein
fea23ca9f0 Fix include addons 2018-03-24 02:11:40 +02:00
moelsayed
69b629c115 Update only for pre-pull and log cleanup 2018-03-24 01:47:44 +02:00
Alena Prokharchyk
0751f86e85
Merge pull request #436 from dahendel/addons_include 
Adding support for urls and file paths
 2018-03-23 15:16:35 -07:00
Alena Prokharchyk
d0a340257f
Merge pull request #433 from HighwayofLife/add_additional_hosts 
Add additional hosts to Api Server PKI
 2018-03-23 15:03:04 -07:00
dhendel
7875c09966 Adding support for urls and file paths 2018-03-23 16:50:08 -05:00
moelsayed
8188c1c445 Set default allow-untagged-cloud 2018-03-23 22:15:30 +02:00
David Lewis
0efc4fc845 Support additional altnames for PKI certs 2018-03-23 12:39:34 -07:00
Alena Prokharchyk
66f0d1013b
Merge pull request #413 from HighwayofLife/cluster_name 
Support Cluster name in Kube Config
 2018-03-23 11:35:51 -07:00
David Lewis
34c41c1b05 Add ClusterName support for kube config 2018-03-23 11:28:58 -07:00
galal-hussein
e8571898b4 Add support for AWS cloud provider 2018-03-23 20:14:11 +02:00
David Lewis
4eb733b2b7 Support component command argument overrides 
Append podsecuritypolicy to admission-control list
 2018-03-23 10:27:12 -07:00
David Lewis
5fcfe95aa0 Add support for additional service binds 
Support Additional volume binds

Add basic documentation for extra args and binds
 2018-03-23 09:22:04 -07:00
moelsayed
5ea7cdebcb typo 2018-03-23 02:02:46 +02:00
moelsayed
914ca06e2c Error out on unsuppored docker version instead of Warn 2018-03-22 20:33:11 +02:00
Alena Prokharchyk
3824db88a9
Merge pull request #425 from moelsayed/log_links 
Log RKE components to a specific location
 2018-03-21 13:40:05 -07:00
moelsayed
ef7b997e2a Log RKE components to a specific location 2018-03-21 22:29:09 +02:00
galal-hussein
4d90a1ca79 Disable cadvisor and readonly port in kubelet 2018-03-21 19:59:45 +02:00
Alena Prokharchyk
c299e9c690
Merge pull request #405 from Jason-ZW/master 
Add rprivate to fix system break after reboot
 2018-03-21 09:31:11 -07:00
galal-hussein
6e7e18ad1e Update workers only option 
Disable port check
 2018-03-20 15:17:35 +02:00
moelsayed
5dcaf4b573 bump k8s version 2018-03-13 20:02:22 +02:00
Alena Prokharchyk
bc05bc2dcc
Merge pull request #410 from galal-hussein/secure_kubelet 
Secure kubelet port access
 2018-03-12 13:28:13 -07:00
galal-hussein
fcefbf7016 Secure kubelet port access 2018-03-12 21:04:28 +02:00
Alena Prokharchyk
486cea8464
Merge pull request #403 from cloudnautique/add_sshagent_global_flag 
Leverage global SSHAgentAuth setting
 2018-03-12 11:25:01 -07:00
Jason
8066b9d806
Add rprivate to fix system break after reboot 
System break when restart node, update for PR #401
 2018-03-06 10:49:20 +08:00
Bill Maxwell
ad0bc6c0aa Leverage global SSHAgentAuth setting 
This addresses users issues in being unable to use RKE command line
using SSH_AUTH_SOCK. On OSX the socket env var is set, but nothing
is listening. Also, Linux users have reported issues. To address this
the default mode is to not use SSH Agent Auth. A user must set it
explicitly in either the config file or on the CLI. The only way
to use a passphrase protected key file is with a properly configured
SSH Agent and using SSH Agent Auth.
 2018-03-05 17:52:43 -07:00
Jason
f238dadfbb Add rprivate parameters to kubelet mounts. Fixed #285 #263. 
Such as Docker 1.13, bind mounts propagation doesn't default to `rprivate` which cause problems when kubelet unmount cgroup.
 2018-03-05 09:29:38 +00:00
galal-hussein
f76f954b42 Disable kubeapi port check if wrap transport is used 2018-03-04 08:38:37 -07:00
galal-hussein
9511fa54cb Remove api runtime config 2018-03-03 21:58:41 +02:00
Alena Prokharchyk
3f6c2ba8c7
Merge pull request #391 from moelsayed/ingress_nit 
Nit fixes for ingress
 2018-03-02 16:54:55 -08:00
Darren Shepherd
c3d3d013dc Add option to use kubectl to deploy 2018-03-01 14:35:58 -07:00
moelsayed
473fe2c259 Nit fixes for ingress 2018-02-28 01:58:43 +02:00
Darren Shepherd
2a72d7057a Typo 2018-02-26 16:31:34 -07:00
Darren Shepherd
fce6b15f18 Add ability to deploy jobs with kubectl and not job task 
This API is used solely in rancher local clusters.
 2018-02-26 16:31:34 -07:00
galal-hussein
bfa51fd41c extract apply authz resource function 2018-02-26 16:04:19 -07:00
moelsayed
dcf497add2 Fix etcd process regression 2018-02-26 23:43:24 +02:00
moelsayed
eddb9ec56b Use default images from types 2018-02-26 21:30:52 +02:00
moelsayed
319c383f13 Use named process map 2018-02-26 12:14:36 -07:00
galal-hussein
9a19de383d Add node authorizer 2018-02-26 11:56:57 -07:00
galal-hussein
ba7e8bb236 Use k8s datastore with calico and remove ca keys 2018-02-24 01:26:22 +02:00
galal-hussein
1dc9a94021 Change etcd dir 2018-02-22 19:31:31 -07:00
Alena Prokharchyk
4731c01904
Merge pull request #370 from galal-hussein/add_rem_idempotency 
Add/Remove etcd idempotency
 2018-02-22 09:54:34 -08:00
galal-hussein
5a35f47dc5 Add remove etcd idempotency 2018-02-22 19:49:18 +02:00
Alena Prokharchyk
bc8917702c
Merge pull request #344 from galal-hussein/stop_duplicate_nodes 
Validate Duplicate nodes
 2018-02-21 17:00:53 -08:00
galal-hussein
5b9d9a75d0 Validate Duplicate nodes 2018-02-22 02:45:20 +02:00
Alena Prokharchyk
e1aca4f37d
Merge pull request #249 from superseb/configurable_sshport 
SSH port is configurable
 2018-02-21 16:36:07 -08:00
galal-hussein
c02873b8e9 Ignore inactive hosts 2018-02-22 02:16:51 +02:00
Sebastiaan van Steenis
56da1fe849 SSH port is configurable 2018-02-21 13:04:06 +01:00
moelsayed
5cf4ef5f5f Add ingress controller images to SystemImages 2018-02-20 20:54:48 +02:00
Alena Prokharchyk
97c16857c8
Merge pull request #365 from moelsayed/custom_k8s_dialer 
Add support for custom WrapTransport for Kubernetes Client
 2018-02-20 10:50:09 -08:00
moelsayed
03673b8f22 Add support for custom WrapTransport for Kubernetes Client 2018-02-20 20:45:32 +02:00
Alena Prokharchyk
bd0b021549
Merge pull request #357 from superseb/dockerrootdir 
Use configured docker daemon root dir on kubelet
 2018-02-20 09:24:47 -08:00
galal-hussein
b1c2a5d153 Fix etcd issue with reloading cluster 2018-02-16 16:03:00 -08:00
Sebastiaan van Steenis
086201a5f5 Use configured docker daemon root dir on kubelet 2018-02-16 18:10:14 +01:00
galal-hussein
11d7aa0e16 Start cluster with only etcd nodes 2018-02-16 03:39:13 +02:00
Alena Prokharchyk
5b7e5d9c30
Merge pull request #340 from galal-hussein/fix_duplicate_addresses 
add /var/lib/cni to kubelet mounts
 2018-02-15 16:04:56 -08:00
galal-hussein
289c3d5d20 add /var/lib/cni to kubelet mounts 2018-02-14 23:14:21 +02:00
galal-hussein
c2c1804500 External etcd 2018-02-14 22:58:35 +02:00
moelsayed
e996c1748e Fix selinux regression 2018-02-13 20:30:15 +02:00
moelsayed
169ac106a5 Add GenetatePlan() and use it internally 2018-02-13 03:33:29 +02:00
galal-hussein
59182cee62 [RKE Refactor] Generate cluster and node certs 2018-02-08 20:15:36 +02:00
galal-hussein
d99efdc60f rke refactoring - configure cluster method 2018-02-08 05:13:06 +02:00
galal-hussein
c2537737fb Copy local connection dialer factory on update 2018-02-07 21:39:56 +02:00
Alena Prokharchyk
0e1542a7b3
Merge pull request #328 from galal-hussein/fix_ingress 
Fix ingress
 2018-02-06 16:32:57 -08:00
galal-hussein
dcacd86b32 Change ingress type to ingress provider 2018-02-07 02:30:25 +02:00
moelsayed
d77d034cfa Kubernetes default version: v1.8.7-rancher1-1 2018-02-07 02:25:31 +02:00
moelsayed
4165510395 Move network plugin images to SystemImages 2018-02-06 22:42:50 +02:00
moelsayed
5521b187a7 Move default system images to rancher 2018-02-03 09:41:37 +02:00
Alena Prokharchyk
313360b11f
Merge pull request #297 from moelsayed/fix_293 
Refactor saving secrets
 2018-02-01 14:12:03 -08:00
Alena Prokharchyk
ebb64ec3f9
Merge pull request #298 from moelsayed/refactor_cert_deploy 
Refactor certificates deployment
 2018-02-01 14:11:55 -08:00
moelsayed
9320a57949 Pre-pull k8s images 2018-02-02 00:05:15 +02:00
moelsayed
ebfc5a7c10 Refactor saving secrets 2018-02-02 00:02:42 +02:00
moelsayed
8ba6413a44 Refactor certificates deployment 2018-02-01 23:57:15 +02:00
galal-hussein
f8f877ba27 Add nginx ingress controller and labels/taints sync 2018-02-01 23:28:31 +02:00
moelsayed
3f3275da6d Fix panic on empty k8s version 2018-02-01 13:31:33 +02:00
galal-hussein
fb37cc90a9 Fix rolling update of nginx-proxy for worker and etcd 2018-02-01 01:56:12 +02:00
moelsayed
8bf9d3eeea Add kubernetes version and pin etcd version in cluster.yml 2018-01-31 22:33:48 +02:00
Alena Prokharchyk
cd83583815
Merge pull request #289 from moelsayed/k8s_version 
Use cluster level k8s version
 2018-01-31 11:43:26 -08:00
moelsayed
6c45779abc Use cluster level k8s version 2018-01-31 19:56:33 +02:00
moelsayed
4159d7f156 Pass private registries list through the function calls 2018-01-31 19:50:55 +02:00
moelsayed
cb290d23e3 Add support for registry authentication 2018-01-31 19:50:44 +02:00
Alena Prokharchyk
b6f4a9032a
Merge pull request #283 from galal-hussein/local_fix 
Fix network check to allow local deployment
 2018-01-30 09:27:44 -08:00
Alena Prokharchyk
18fffaf182
Merge pull request #278 from superseb/network_typo 
Corrected network typo
 2018-01-30 09:27:34 -08:00
galal-hussein
5457e5a8f0 Fix network check to allow local deployment 2018-01-30 19:12:45 +02:00
moelsayed
3a1394e739 Add SystemImages type 2018-01-30 18:33:53 +02:00
Sebastiaan van Steenis
d67e3fad52 Corrected network typo 2018-01-27 12:47:00 +01:00
galal-hussein
0ef0a17010 Add generic generation for pki objects and etcd TLS 2018-01-25 20:38:07 +02:00
galal-hussein
efd9116b80 remove deleted etcd member from k8s and update kube-api with new list 2018-01-24 05:19:44 +02:00
galal-hussein
b78ce89576 Update kubernetes image to v1.8.5-rancher4 2018-01-22 15:14:35 -08:00
galal-hussein
c425298f69 revert back to ignore docker version 2018-01-22 21:31:08 +02:00
moelsayed
572a7ad245 Fix multi-role port-check conflict 2018-01-20 00:59:38 +02:00
galal-hussein
dfe8d8ce6a Fix check for worker hosts 2018-01-20 00:23:39 +02:00
galal-hussein
9e29b753cb Add unschedulable kubelet on etcd nodes 2018-01-19 20:18:51 +02:00
moelsayed
7fada001d3 Fix port-check update issue 2018-01-19 01:54:02 +02:00
Alena Prokharchyk
3733987faf
Merge pull request #238 from moelsayed/port_check 
Add open port checks
 2018-01-17 13:53:49 -08:00
moelsayed
c815ef5751 Add open port checks 2018-01-17 23:45:29 +02:00
galal-hussein
3bfa9bd49b change artifacts versions 2018-01-15 11:58:19 -08:00
galal-hussein
447eb6a479 make cluster.yml optional in --local 2018-01-15 06:36:28 +02:00
moelsayed
4c08db1d53 recoverable provisioning 2018-01-13 05:57:28 +02:00
galal-hussein
8685523038 Add local option to deploy/remove kubernetes on local machine 
Remove insecure port from kube-api

Use cluster.yml config

Pass config dir to cluster up/remove
 2018-01-12 20:46:09 +02:00
galal-hussein
67774f7e30 Handle add/remove for etcd nodes 
Handle adding more than one etcd at once
 2018-01-12 03:57:37 +02:00
Darren Shepherd
9f4bc6f2d6
Merge pull request #214 from ibuildthecloud/master 
Add context.Context to everything and also make logging pluggable
 2018-01-09 22:30:01 +00:00
Darren Shepherd
d8dd29765f Add context.Context to everything and also make logging pluggable 2018-01-09 15:18:01 -07:00
galal-hussein
203bd005e3 Change Ignore to enforce docker version 2018-01-08 22:25:24 +02:00
galal-hussein
4f0f52b15e Default services images 2018-01-06 02:14:30 +02:00
Alena Prokharchyk
00ffa8eec7
Merge pull request #185 from galal-hussein/save_cert 
Save certificates/state after deploying control plane
 2018-01-02 13:34:09 -08:00
galal-hussein
bb008ba58a Save certificate after deploying control plane 2018-01-02 23:27:13 +02:00
moelsayed
e0e185972b Use go templates for addons, network plugins and other manifests 2018-01-02 22:45:46 +02:00
Alena Prokharchyk
e6c3f50a4d
Merge pull request #170 from galal-hussein/healthcheck_validation 
Add healthcheck for services components
 2017-12-20 13:32:00 -08:00
galal-hussein
ed7ca110b0 Add healtcheck for services components 
Integrate healthcheck with each service
 2017-12-20 23:24:28 +02:00
moelsayed
2011a2cf01 Enable PodSecurityPolicy support 2017-12-20 23:15:21 +02:00
Sebastiaan van Steenis
d74924ea8f Fix rbac typo 2017-12-16 10:48:42 +01:00
Alena Prokharchyk
68a3ef2a43
Merge pull request #154 from galal-hussein/dialer_factory 
Add Dialer Factory and receive rkeConfig instead of cluster yaml
 2017-12-15 21:28:52 -08:00
galal-hussein
fd47cdc80d Add Dialer Factory 2017-12-16 07:23:58 +02:00
moelsayed
69ccba0c1a Make RBAC default authz mode 2017-12-16 07:04:16 +02:00
moelsayed
8ea65915d3 Enable RBAC and needed addons/network plugin configuration 2017-12-16 05:41:18 +02:00
moelsayed
c671552a27 add ignore_docker_version 2017-12-15 05:02:44 +02:00
galal-hussein
b20c0cf419 Change cloud_provider to calico_cloud_provider 2017-12-13 20:14:10 +02:00
Alena Prokharchyk
e58d7685da
Merge pull request #128 from guangbochen/master 
update misspelled common words
 2017-12-13 09:52:25 -08:00
Alena Prokharchyk
d99cd9365b
Merge pull request #118 from moelsayed/fix_115 
Enable AWS specific configuration for Calico
 2017-12-12 15:43:11 -08:00
Alena Prokharchyk
82e9ce3ca3
Merge pull request #132 from galal-hussein/custom_dialer_2 
Using a custom dialer for cluster hosts
 2017-12-12 15:37:21 -08:00
moelsayed
579038a5a2 Enable AWS specific configuration for Calico 2017-12-12 20:26:14 +02:00
galal-hussein
afa3a41614 Add iface option to flannel 2017-12-12 18:14:18 +02:00
galal-hussein
67c4214906 Using a custom dialer for cluster hosts 2017-12-12 01:50:10 +02:00
Guangbo Chen
1cc26ee373 update misspelled common words 2017-12-09 19:53:38 +08:00
Alena Prokharchyk
ead2709100
Merge pull request #126 from galal-hussein/warning_on_remove 
Add replace fatal with warning when can't remove local kubeconfig
 2017-12-08 23:48:15 -06:00
galal-hussein
0bd70fcdeb Add replace fatal with warning when can't remove local kubeconfig 2017-12-09 07:42:42 +02:00
Alena Prokharchyk
dd7396b72c
Merge pull request #81 from kyamazawa/support_weave 
support weave-net network plugin
 2017-12-08 23:42:27 -06:00
galal-hussein
ebba017126 Add services sidekick container 2017-12-09 01:25:22 +02:00
kyamazawa
82dce19ac8 merge head & add weave-net network plugin configuration cluster cidr, weave_image, weave_cni_image 2017-12-06 12:53:51 +09:00
kyamazawa
f5797c6ba3 add weave-net network plugin support 2017-12-06 11:37:48 +09:00
galal-hussein
42e13abb92 Rebuild local admin if the current cp host is down 2017-12-06 04:23:02 +02:00
moelsayed
5bcf0845c7 Fix bug in setting service defaults 2017-12-05 21:44:17 +02:00
moelsayed
0ee002b2cf Add user-configurable images 
Refactor configuration defaults
 Add comments to config
 Add configurable utility images
 Add configurable network plugin images
 Add configurable kubedns images
 2017-12-05 20:34:54 +02:00
Darren Shepherd
df7e40188e Refactor types 2017-12-05 10:29:50 -07:00
Sebastiaan van Steenis
bd8a966ce6 Add host connectivity and Docker version check 2017-12-04 23:15:33 +01:00
galal-hussein
f7905e2dfd Add ssh key and path per host 2017-12-04 22:09:57 +02:00
galal-hussein
d1f78f0b40 Refactor reconcilation 
Add role based add/delete for services

Use pointers for hosts

Consistent log format
 2017-12-02 20:37:04 +02:00
Alena Prokharchyk
29c15e1568
Merge pull request #83 from galal-hussein/fix_tilde 
Fix tilde issue in ssh key path
 2017-11-30 09:32:21 -08:00
galal-hussein
f3d5264cd1 Fix tilde in ssh key path 2017-11-30 17:53:11 +02:00
Sebastiaan van Steenis
fd0ee9e853 Fix typo in rke-network-plugin 2017-11-30 15:49:00 +01:00
Alena Prokharchyk
e8a611f12a
Merge pull request #75 from moelsayed/single_node 
allow single node deployments
 2017-11-29 17:04:03 -08:00
moelsayed
9807ce60df allow single node deployments 2017-11-30 03:03:01 +02:00
moelsayed
63c7d5c5c1 remove kubeconfig as part of cluster remove 2017-11-30 02:49:06 +02:00
galal-hussein
7af9ffbf9f Fix rolling update bug for multi master nginx 2017-11-29 00:18:00 +02:00
galal-hussein
41c48877ba Structure and config changes 2017-11-28 23:55:43 +02:00
moelsayed
07a1441826 Command overhaul 
remove cluster command
merge upgrade and up commands
rename down command
 2017-11-28 21:17:57 +02:00
galal-hussein
50826bf26e Fix check for etcd hosts 2017-11-27 01:27:39 +02:00
moelsayed
fad6134609 Generate new KubeAPI certificate for new nodes using the same key 2017-11-27 00:36:42 +02:00
galal-hussein
8d870528e5 Add error messages for adding/removing nodes while upgrade 2017-11-26 22:09:26 +02:00
galal-hussein
3f7f93c2ab Clean host after removal 
return error in dialer
 2017-11-26 20:41:10 +02:00
galal-hussein
2a546f3808 Add rke config to generate configuration file 2017-11-22 03:34:46 +02:00
Hussein Galal
ed8b25e2d8
Merge pull request #31 from galal-hussein/add_ssh_key_path 
Add ssh private key path
 2017-11-22 02:49:22 +02:00
Hussein Galal
626c0c904a
Merge pull request #28 from moelsayed/add_calico 
Add initial support for additional network plugins
 2017-11-22 02:45:18 +02:00
moelsayed
42b22e69b0 Add initial support for additional network plugins 
Refactor DeployNetworkPlugin()
Add calico network plugin
Add canal network plugin
 2017-11-22 02:43:55 +02:00
galal-hussein
97aedbe746 Add ssh private key path 2017-11-21 22:26:26 +02:00
galal-hussein
c383436411 Add cluster validation and regenerate kubeapi cert 2017-11-21 21:25:25 +02:00
galal-hussein
892e9ab5d9 Cluster Down/Remove 
Reverse order and add force flag
 2017-11-21 01:23:18 +02:00
Hussein Galal
e53f7adf02
Merge pull request #22 from moelsayed/job_based_addons 
System and user addons based on k8s jobs and configmaps
 2017-11-18 17:26:28 +02:00
moelsayed
9e2c352bc7 addons based on k8s jobs and configmaps 2017-11-18 17:24:49 +02:00