Chart changes to support k8s v1.16
This PS includes changes to support k8s 1.16, these changes would work with existing kubernetes version as well. A seperate change would be done to uplift kubernetes to 1.16. Hyperkube short aliases are removed in k8s 1.15 https://github.com/kubernetes/kubernetes/pull/76953 - Rename binaries of kubernetes components in promenade and corresponding anchor helm charts - Kubelet flag --allow-priveleged is deprecated in k8s 1.15 and removed in 1.16. Remove the flag from kubelet template. This fix will be backward compatible as long as psp are defined. Change-Id: I751dd7c0281b0c00ac8f283c1df379e932fe4658
This commit is contained in:
parent
9a50a59bf6
commit
b49805ae82
@ -39,7 +39,8 @@ labels:
|
|||||||
node_selector_value: enabled
|
node_selector_value: enabled
|
||||||
|
|
||||||
command_prefix:
|
command_prefix:
|
||||||
- /apiserver
|
- /hyperkube
|
||||||
|
- kube-apiserver
|
||||||
- --admission-control=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,ResourceQuota,DefaultTolerationSeconds
|
- --admission-control=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,ResourceQuota,DefaultTolerationSeconds
|
||||||
|
|
||||||
apiserver_webhook:
|
apiserver_webhook:
|
||||||
|
@ -19,7 +19,8 @@ release_group: null
|
|||||||
const:
|
const:
|
||||||
encryption_annotation: "airshipit.org/encryption_key"
|
encryption_annotation: "airshipit.org/encryption_key"
|
||||||
command_prefix:
|
command_prefix:
|
||||||
- /apiserver
|
- /hyperkube
|
||||||
|
- kube-apiserver
|
||||||
- --advertise-address=$(POD_IP)
|
- --advertise-address=$(POD_IP)
|
||||||
- --allow-privileged=true
|
- --allow-privileged=true
|
||||||
- --anonymous-auth=false
|
- --anonymous-auth=false
|
||||||
|
@ -54,7 +54,8 @@ controller_manager:
|
|||||||
log_level: 5
|
log_level: 5
|
||||||
|
|
||||||
command_prefix:
|
command_prefix:
|
||||||
- /controller-manager
|
- /hyperkube
|
||||||
|
- kube-controller-manager
|
||||||
- --cluster-cidr=10.97.0.0/16
|
- --cluster-cidr=10.97.0.0/16
|
||||||
- --node-monitor-period=5s
|
- --node-monitor-period=5s
|
||||||
- --node-monitor-grace-period=20s
|
- --node-monitor-grace-period=20s
|
||||||
|
@ -52,7 +52,8 @@ proxy:
|
|||||||
log_level: 5
|
log_level: 5
|
||||||
|
|
||||||
command_prefix:
|
command_prefix:
|
||||||
- /proxy
|
- /hyperkube
|
||||||
|
- kube-proxy
|
||||||
- --proxy-mode=iptables
|
- --proxy-mode=iptables
|
||||||
- --cluster-cidr=10.97.0.0/16
|
- --cluster-cidr=10.97.0.0/16
|
||||||
|
|
||||||
|
@ -82,5 +82,6 @@ service:
|
|||||||
name: kubernetes-scheduler
|
name: kubernetes-scheduler
|
||||||
|
|
||||||
command_prefix:
|
command_prefix:
|
||||||
- /scheduler
|
- /hyperkube
|
||||||
|
- kube-scheduler
|
||||||
- --feature-gates=TaintNodesByCondition=true
|
- --feature-gates=TaintNodesByCondition=true
|
||||||
|
@ -271,7 +271,7 @@ class Configuration:
|
|||||||
|
|
||||||
def bootstrap_apiserver_prefix(self):
|
def bootstrap_apiserver_prefix(self):
|
||||||
return self.get_path('Genesis:apiserver.command_prefix',
|
return self.get_path('Genesis:apiserver.command_prefix',
|
||||||
['/apiserver'])
|
['kube-apiserver'])
|
||||||
|
|
||||||
|
|
||||||
def _matches_filter(document, *, schema, labels, name):
|
def _matches_filter(document, *, schema, labels, name):
|
||||||
|
@ -5,7 +5,6 @@ After=network-online.target
|
|||||||
|
|
||||||
[Service]
|
[Service]
|
||||||
ExecStart=/opt/kubernetes/bin/kubelet \
|
ExecStart=/opt/kubernetes/bin/kubelet \
|
||||||
--allow-privileged=true \
|
|
||||||
--anonymous-auth=false \
|
--anonymous-auth=false \
|
||||||
--client-ca-file=/etc/kubernetes/pki/kubelet-client-ca.pem \
|
--client-ca-file=/etc/kubernetes/pki/kubelet-client-ca.pem \
|
||||||
--cluster-dns={{ config['KubernetesNetwork:dns.service_ip'] }} \
|
--cluster-dns={{ config['KubernetesNetwork:dns.service_ip'] }} \
|
||||||
|
@ -30,7 +30,7 @@ function get_namespaces () {
|
|||||||
|
|
||||||
function get_pods () {
|
function get_pods () {
|
||||||
NAMESPACE=$1
|
NAMESPACE=$1
|
||||||
kubectl get pods -n "${NAMESPACE}" -o name --show-all | awk -F '/' '{ print $NF }' | xargs -L1 -P 1 -I {} echo "${NAMESPACE}" {}
|
kubectl get pods -n "${NAMESPACE}" -o name | awk -F '/' '{ print $NF }' | xargs -L1 -P 1 -I {} echo "${NAMESPACE}" {}
|
||||||
}
|
}
|
||||||
export -f get_pods
|
export -f get_pods
|
||||||
|
|
||||||
|
@ -17,7 +17,7 @@ spec:
|
|||||||
image: {{ config['Genesis:images.kubernetes.scheduler'] }}
|
image: {{ config['Genesis:images.kubernetes.scheduler'] }}
|
||||||
command:
|
command:
|
||||||
- ./hyperkube
|
- ./hyperkube
|
||||||
- scheduler
|
- kube-scheduler
|
||||||
- --leader-elect=true
|
- --leader-elect=true
|
||||||
- --kubeconfig=/etc/kubernetes/scheduler/kubeconfig.yaml
|
- --kubeconfig=/etc/kubernetes/scheduler/kubeconfig.yaml
|
||||||
- --feature-gates=TaintNodesByCondition=true
|
- --feature-gates=TaintNodesByCondition=true
|
||||||
|
Loading…
Reference in New Issue
Block a user