Sebastiaan van Steenis
d65d72ae6d
Enable kube-api audit log for new k8s versions
2020-03-15 13:55:47 +01:00
rajashree
b2a71ce067
Use non-zero downtime upgrade logic during restore
...
If restore flag is set to true on RKEConfig, the reconcileCluster flag in
ClusterUp should not be set to true, so that DeployControlPlane and DeployWorkerPlane
call the non-zero downtime upgrade functions RunControlPlane and RunWorkerPlane respectively
2020-03-13 09:09:30 -07:00
rajashree
6b25bcf3e0
Remove ignore-upgrade label from zero downtime upgrade
2020-03-10 23:36:17 -07:00
rajashree
d420881c41
Check role before including host in inactive host list
2020-03-01 19:03:07 -08:00
rajashree
e27a05f8b1
Attempt upgrade on NotReady hosts
2020-02-26 14:14:42 -08:00
rajashree
968a399f26
Accept label to ignore nodes during upgrade
...
RKE does a cluster scan to find the unreachable hosts, and if that number
is same as or exceeds maxUnavailable, upgrade won't proceed.
This commit introduces a label users can provide for their nodes so they
don't get counted as unavailable and are excluded from upgrade.
This commit also includes a couple of bug fixes
2020-02-22 14:23:47 -08:00
rajashree
11678a3f98
Change RKE upgrade logic for zero downtime
2020-02-05 16:19:47 -08:00
moelsayed
372393ac1b
Add Secret Encryption Provider Support
2019-10-29 14:10:32 -07:00
Rowan James
3ac2ef216d
Sprintf consistency when handling API URL
2019-10-03 12:30:04 -07:00
Rowan James
9873b5f57a
security: don't pass arbitrary configuration data to format string
...
This could just use concatenation, but consistency is key.
2019-10-03 12:30:04 -07:00
kinarashah
9411027476
consider service options based on hostOS info
2019-09-09 11:12:33 -07:00
Frank Mai
0a170b22b7
Support to accpet new Windows service options
...
**Issue:**
https://github.com/rancher/rancher/issues/22470
2019-09-05 17:05:34 -07:00
Murali Paluru
c69d971962
print version
2019-09-03 13:13:34 -07:00
Darren Shepherd
f8bac2c059
Update to new certs package since latest k8s dropped it
2019-08-19 11:02:43 -07:00
kinarashah
116b47b025
rancher pass serviceoptions and addon templates to rke
2019-07-03 10:04:27 -07:00
kinarashah
c191ed6202
use k8s version info from kontainer-driver-metadata
2019-07-03 10:04:27 -07:00
moelsayed
e3d6fb4db9
Restore backup to a new etcd plane
2019-03-06 09:22:52 -08:00
moelsayed
eb3dd4958f
Handle legacy clusters restore
2019-02-14 17:25:52 -08:00
moelsayed
3b3cda1b08
Work around systemd-resolved for dind
...
Add dind-dns-server option
Set sysctl configration for calico
2019-01-22 09:10:02 -08:00
galal-hussein
82fa8d6305
Add restart components to custom certs
2019-01-14 11:51:11 -08:00
galal-hussein
9ee750ec01
Adding csr generation and custom certs
2019-01-09 11:47:53 -08:00
Jason Greathouse
7afa6e927e
update k8s defaults, CIS recommendations
2019-01-07 12:07:46 -08:00
galal-hussein
3c6c7f1b7b
Run rebuild cluster certs from clusterup
2018-12-20 14:04:47 -08:00
galal-hussein
4d23fb4288
Return api and client certs to rotate certs
2018-12-18 16:35:20 -08:00
galal-hussein
11aa0caabc
Fix rotate certificates with new state
2018-11-14 05:15:57 +08:00
galal-hussein
696b61679c
Final fixes and cleanup for state management
...
Fix dind and local and etcd snapshots
add ExternalFlags and dialer options
2018-11-09 11:16:17 -08:00
moelsayed
6da35256a8
handle upgrade cases
...
backup state to kubernetes
2018-11-09 11:16:17 -08:00
galal-hussein
8b8870311b
refactor the build state
...
remove extra cert generation for etcd in reconcile
fix reconcile and etcd add and remove cluster state with rke remove
fix add/remove issues
Fix the up command
Fix default paths for kubeconfig and rkestate
2018-11-09 11:16:17 -08:00
moelsayed
90fd13db65
Update main code path to use new state
2018-11-09 11:16:17 -08:00
galal-hussein
f48da22d8e
init commit for refactor state
...
add init test
use rkeconfig for init
reconcile old state file
2018-11-09 11:16:17 -08:00
galal-hussein
3551e6e4b6
Add Rotate certificates command to rke
2018-10-31 12:08:31 -07:00
galal-hussein
a55b9a6ae0
Add option for dind storage driver
2018-10-18 09:32:29 -07:00
moelsayed
8a808c4cc5
Set cluster config as early as possible
2018-10-18 09:25:46 -07:00
galal-hussein
ce62c898bb
Handle deleting all controlplane nodes when nodes are unreachable
2018-09-26 17:03:53 -07:00
galal-hussein
0d0ec5c7c4
Use default docker bridge network instead of creating new network
2018-08-15 09:35:36 -07:00
galal-hussein
247f4c9450
Add dind mode to rke
2018-07-10 15:51:17 -07:00
Bill Maxwell
73e56b0fbb
Added flag to ignore docker version
2018-05-16 14:01:31 -07:00
galal-hussein
838928978a
Add updated cluster config to the k8s state
2018-04-27 15:07:50 -07:00
Darren Shepherd
23ec8ebb36
Return error when a host is inactive
2018-04-17 23:42:59 -07:00
Darren Shepherd
2c79e9bfc5
ClusterUp return certs
2018-04-02 04:03:43 -07:00
Darren Shepherd
b841604933
Revert "Make etcd provisioning a public API"
...
This reverts commit d2c58fb8e6
2018-04-02 04:03:43 -07:00
Darren Shepherd
d2c58fb8e6
Make etcd provisioning a public API
2018-03-31 04:00:50 -07:00
moelsayed
ef7b997e2a
Log RKE components to a specific location
2018-03-21 22:29:09 +02:00
galal-hussein
6e7e18ad1e
Update workers only option
...
Disable port check
2018-03-20 15:17:35 +02:00
Bill Maxwell
ad0bc6c0aa
Leverage global SSHAgentAuth setting
...
This addresses users issues in being unable to use RKE command line
using SSH_AUTH_SOCK. On OSX the socket env var is set, but nothing
is listening. Also, Linux users have reported issues. To address this
the default mode is to not use SSH Agent Auth. A user must set it
explicitly in either the config file or on the CLI. The only way
to use a passphrase protected key file is with a properly configured
SSH Agent and using SSH Agent Auth.
2018-03-05 17:52:43 -07:00
Darren Shepherd
c3d3d013dc
Add option to use kubectl to deploy
2018-03-01 14:35:58 -07:00
galal-hussein
bfa51fd41c
extract apply authz resource function
2018-02-26 16:04:19 -07:00
moelsayed
03673b8f22
Add support for custom WrapTransport for Kubernetes Client
2018-02-20 20:45:32 +02:00
galal-hussein
11d7aa0e16
Start cluster with only etcd nodes
2018-02-16 03:39:13 +02:00
galal-hussein
59182cee62
[RKE Refactor] Generate cluster and node certs
2018-02-08 20:15:36 +02:00
