rancher/rke
1
0
Fork 0
mirror of https://github.com/rancher/rke.git synced 2025-06-21 13:07:08 +00:00
Code Issues Releases Wiki Activity
1,449 Commits 44 Branches 738 Tags 691 MiB
e42ff49fec
Commit Graph

147 Commits

Author SHA1 Message Date
Jason Greathouse
7afa6e927e update k8s defaults, CIS recommendations 2019-01-07 12:07:46 -08:00
Erik Wilson
e04b7d4413 Add support for Kubernetes API Authn Webhook 
Allow multiple authn strategies to be defined, including new 'webhook'
strategy. Webhook strategy configuration contains the contents of the
authentication webhook file as well as the cache timeout period.

This change allows a Kubernetes API Auth service to authenticate
user requests without proxying through the Rancher server.
 2019-01-03 17:15:23 -07:00
galal-hussein
66fb2c4ac0 Get checksum of the cloud file content 2018-12-06 16:23:20 -08:00
galal-hussein
696b61679c Final fixes and cleanup for state management 
Fix dind and local and etcd snapshots

add ExternalFlags and dialer options
 2018-11-09 11:16:17 -08:00
galal-hussein
8b8870311b refactor the build state 
remove extra cert generation for etcd in reconcile

fix reconcile and etcd add and remove cluster state with rke remove

fix add/remove issues

Fix the up command

Fix default paths for kubeconfig and rkestate
 2018-11-09 11:16:17 -08:00
galal-hussein
3551e6e4b6 Add Rotate certificates command to rke 2018-10-31 12:08:31 -07:00
Sebastiaan van Steenis
22a339ea33 Update to Golang 1.11 2018-10-18 09:27:46 -07:00
Sebastiaan van Steenis
12559a21c7 Use clusterversion to check supported Docker versions 2018-10-04 11:31:35 -07:00
moelsayed
d4759bcc4f Remove ServiceOption if empty 2018-10-02 12:58:21 -07:00
moelsayed
6b6a7803a7 Move admission controller options to ServiceOptions 2018-08-30 14:52:30 -07:00
moelsayed
d451683abb Add docker config file environment variables for kubelet 2018-08-30 10:00:28 -07:00
Sebastiaan van Steenis
bff7e0a2c3 Avoid panic in rke-tools entrypoint detection 2018-08-09 09:25:25 -07:00
moelsayed
de617da470 Fix entrypoint bug 2018-08-05 19:57:52 -07:00
moelsayed
4357da7742 handle entrypoint upgrade across versions 2018-08-04 04:30:54 -07:00
moelsayed
010a7977ff Change entrypoint to fix multiple mount problem 2018-08-02 02:33:46 +02:00
moelsayed
28db358ebd Fix nested mounts issue when using default host prefix 2018-08-01 11:26:42 -07:00
Chase Bolt
82af829b8c adjust volumeplugins to a non-persistent path that will work oob with default configs 2018-07-20 13:21:36 -07:00
moelsayed
2eeb5cac00 Make sure Binds are unique 2018-07-19 15:12:09 -07:00
galal-hussein
8269c3f301 Add metrics-server addon deployment 2018-07-17 16:51:59 -07:00
orangedeng
9f7a37845e Add support for API aggregation layer 
Add API server parameters
`requestheader-client-ca-file`,
`requestheader-allowed-names`,
`proxy-client-key-file` and
`proxy-client-cert-file`.
After we added this parameters into API server, the API aggregation
server will be supported when it is deployed in rke cluster.
 2018-07-17 16:51:59 -07:00
Chase Bolt
f9ecba0ab2 adjust kubelet volume-plugin-dir to match root-dir 2018-07-11 12:55:46 -07:00
moelsayed
d155cc8e76 Allow etcd parameters to be overridden 2018-07-06 13:32:08 -07:00
Sebastiaan van Steenis
f7814a5e8a Set cluster-cidr on kube-proxy 2018-06-29 13:19:38 -07:00
Sebastiaan van Steenis
1da390d846 Add hostname-override to kube-proxy 2018-06-29 11:31:58 -07:00
moelsayed
39e846442b Fix container log location for ros 2018-06-29 10:49:49 -07:00
moelsayed
fdba4f86e5 Fix reconcile for ros prefix 2018-06-25 17:22:32 -07:00
galal-hussein
a75e3d693c Register controlplane node with taint 2018-06-21 23:41:52 -07:00
moelsayed
4c30f1a28d restart related k8s services when cloud provider config is updated 2018-06-13 09:21:58 -07:00
moelsayed
af9ab4fb94 Add endpoint-reconciler support 2018-06-13 09:19:39 -07:00
Sebastiaan van Steenis
b72f4b2c70 Ability to add extra environment variables to services 2018-06-08 09:45:45 -07:00
moelsayed
716a776d42 Add service-node-port-range for kube-api 2018-06-06 14:27:06 -07:00
galal-hussein
2142661ea7 Refactor cloud provider support 2018-06-06 10:22:50 -07:00
galal-hussein
db3bda1191 fix rhel and centos regression 2018-05-15 14:08:29 -07:00
galal-hussein
21ee619645 Fix override prefix path for ROS, B2D, and CoreOS 2018-05-14 21:14:28 -07:00
galal-hussein
2c64afeb3e Add prefix path for CoreOS 2018-05-10 18:24:57 -07:00
galal-hussein
a3416e6b92 Etcd Backup/restore 2018-05-09 19:39:19 +02:00
moelsayed
d42ead8e11 Add container name labels 2018-05-08 19:47:12 +02:00
Hussein Galal
1bfd18e0e2
Merge pull request #573 from galal-hussein/add_api_servercount 
Add api server count flag to kube-apiserver
 2018-05-03 23:11:20 +02:00
galal-hussein
28e167aa5d Add api server count flag to kube api 2018-05-03 21:37:44 +02:00
Sebastiaan van Steenis
9498c80cc7 Add etcd env vars for etcdctl 2018-05-02 13:47:53 +02:00
galal-hussein
7cbc978489 Skip cloud config parameter with aws cloud provider 2018-04-27 09:58:27 -07:00
galal-hussein
657f38b9f0 Update canal and calico to 3.1.1 2018-04-26 05:10:53 +02:00
galal-hussein
cefe16eb78 Pass docker info to host in generate plan 2018-04-25 16:28:29 -07:00
Sebastiaan van Steenis
6431e8495d Add /usr and /etc readonly to kubelet for os-release 2018-04-24 15:27:16 -07:00
moelsayed
4508d11401 Make cni directories rw 2018-04-24 15:23:39 -07:00
moelsayed
e5c2c86b65 Ensure nginx proxy is upgradable if control hosts change 2018-04-22 14:29:13 -07:00
moelsayed
0069872976 Fix etcd client endpoint address 2018-04-20 15:46:32 -07:00
moelsayed
f1e39f9b10 Fix etcd listen address edge case when public address is DNATed 2018-04-20 15:46:32 -07:00
Alena Prokharchyk
71bafd1f08
Merge pull request #505 from superseb/etcd_listenaddress 
Let etcd only listen on advertised url
 2018-04-19 13:37:07 -07:00
Alena Prokharchyk
d49016714a
Merge pull request #524 from ibuildthecloud/master 
WIP Use new rke-tools image
 2018-04-19 11:07:22 -07:00
Darren Shepherd
dd9f37dbee Don't mask error 2018-04-19 08:54:15 -07:00
Darren Shepherd
4273d1d874 Use new rke-tools image 2018-04-19 08:53:55 -07:00
moelsayed
c490a0b989 remove path prefix from /var/lib/rancher bind 2018-04-18 14:45:14 -07:00
moelsayed
a8b0cf052d Handle non-semver k8s images 2018-04-18 00:04:24 -07:00
moelsayed
275ba147bc Fix version panic 
Fix version confilict
 2018-04-17 20:27:21 -07:00
moelsayed
b057fc322a bind /var/lib/rancher in kubelet 2018-04-18 03:29:20 +02:00
moelsayed
9a243ac091 Use kubernetes major version for service options 2018-04-18 01:43:58 +02:00
Sebastiaan van Steenis
df3e75b1b5 Let etcd only listen on advertised url 2018-04-16 10:08:27 +02:00
galal-hussein
b3f457426c Fix multiple etcd add at runtime 2018-04-14 22:59:33 -07:00
Darren Shepherd
829afa1084 Fix missing image for etcd only nodes 2018-04-14 10:25:50 -07:00
galal-hussein
a4aa5c8192 Change kubelet to rslave 2018-04-11 16:37:56 -07:00
galal-hussein
825bbbdf71 Add prefix path to services and generate plan 2018-04-12 00:54:47 +02:00
moelsayed
493d296c28 Add k8s services options based on k8s version 2018-04-11 19:28:26 +02:00
galal-hussein
4136d82916 Add role labels to node plan 2018-04-04 03:23:26 -07:00
moelsayed
78bff1ebc9 Add AuthConfig to proceses 
Refactor registry auth
 2018-04-04 00:01:46 +02:00
galal-hussein
915ce9ad29 Add address annotation to the node plan 
Adding labels to nod plan
 2018-04-03 12:38:37 -07:00
Darren Shepherd
b841604933 Revert "Make etcd provisioning a public API" 
This reverts commit d2c58fb8e6.
 2018-04-02 04:03:43 -07:00
Darren Shepherd
d2c58fb8e6 Make etcd provisioning a public API 2018-03-31 04:00:50 -07:00
Alena Prokharchyk
9a22edbfc3
Merge pull request #463 from galal-hussein/fix_kubeapi_param 
fix kubelet and kubeapi params
 2018-03-30 15:48:15 -07:00
galal-hussein
fdbb4bb03b fix kubelet and kubeapi params 2018-03-31 00:43:34 +02:00
moelsayed
30498c4f5b fix typo 2018-03-30 20:00:19 +02:00
galal-hussein
b431a22a9c Add cloud and network provider types 2018-03-29 22:58:46 +02:00
galal-hussein
3694d16212 Add Azure cloud provider 2018-03-28 21:46:28 +02:00
galal-hussein
5b848a2b45 Set node-ip and addresses annotations 2018-03-27 00:53:28 +02:00
moelsayed
8188c1c445 Set default allow-untagged-cloud 2018-03-23 22:15:30 +02:00
galal-hussein
e8571898b4 Add support for AWS cloud provider 2018-03-23 20:14:11 +02:00
David Lewis
4eb733b2b7 Support component command argument overrides 
Append podsecuritypolicy to admission-control list
 2018-03-23 10:27:12 -07:00
David Lewis
5fcfe95aa0 Add support for additional service binds 
Support Additional volume binds

Add basic documentation for extra args and binds
 2018-03-23 09:22:04 -07:00
galal-hussein
4d90a1ca79 Disable cadvisor and readonly port in kubelet 2018-03-21 19:59:45 +02:00
Alena Prokharchyk
c299e9c690
Merge pull request #405 from Jason-ZW/master 
Add rprivate to fix system break after reboot
 2018-03-21 09:31:11 -07:00
galal-hussein
fcefbf7016 Secure kubelet port access 2018-03-12 21:04:28 +02:00
Jason
8066b9d806
Add rprivate to fix system break after reboot 
System break when restart node, update for PR #401
 2018-03-06 10:49:20 +08:00
Jason
f238dadfbb Add rprivate parameters to kubelet mounts. Fixed #285 #263. 
Such as Docker 1.13, bind mounts propagation doesn't default to `rprivate` which cause problems when kubelet unmount cgroup.
 2018-03-05 09:29:38 +00:00
galal-hussein
9511fa54cb Remove api runtime config 2018-03-03 21:58:41 +02:00
moelsayed
dcf497add2 Fix etcd process regression 2018-02-26 23:43:24 +02:00
moelsayed
319c383f13 Use named process map 2018-02-26 12:14:36 -07:00
galal-hussein
9a19de383d Add node authorizer 2018-02-26 11:56:57 -07:00
galal-hussein
1dc9a94021 Change etcd dir 2018-02-22 19:31:31 -07:00
Alena Prokharchyk
97c16857c8
Merge pull request #365 from moelsayed/custom_k8s_dialer 
Add support for custom WrapTransport for Kubernetes Client
 2018-02-20 10:50:09 -08:00
moelsayed
03673b8f22 Add support for custom WrapTransport for Kubernetes Client 2018-02-20 20:45:32 +02:00
Sebastiaan van Steenis
086201a5f5 Use configured docker daemon root dir on kubelet 2018-02-16 18:10:14 +01:00
galal-hussein
11d7aa0e16 Start cluster with only etcd nodes 2018-02-16 03:39:13 +02:00
Alena Prokharchyk
5b7e5d9c30
Merge pull request #340 from galal-hussein/fix_duplicate_addresses 
add /var/lib/cni to kubelet mounts
 2018-02-15 16:04:56 -08:00
galal-hussein
289c3d5d20 add /var/lib/cni to kubelet mounts 2018-02-14 23:14:21 +02:00
galal-hussein
c2c1804500 External etcd 2018-02-14 22:58:35 +02:00
moelsayed
e996c1748e Fix selinux regression 2018-02-13 20:30:15 +02:00
moelsayed
169ac106a5 Add GenetatePlan() and use it internally 2018-02-13 03:33:29 +02:00