[WIP] Changes supporting k8s 1.17.3
Changes made in treasuremap to support k8s v1.17 Change-Id: I625753bc9ef5e28d57f320c440aef3abb246704d
This commit is contained in:
parent
1678cf635f
commit
dc6b9edb90
|
@ -88,6 +88,9 @@ metadata:
|
||||||
|
|
||||||
data:
|
data:
|
||||||
apiserver:
|
apiserver:
|
||||||
|
command_prefix:
|
||||||
|
- /hyperkube
|
||||||
|
- kube-apiserver
|
||||||
arguments:
|
arguments:
|
||||||
- --authorization-mode=Node,RBAC
|
- --authorization-mode=Node,RBAC
|
||||||
- --enable-admission-plugins=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,ResourceQuota,DefaultTolerationSeconds,NodeRestriction,EventRateLimit
|
- --enable-admission-plugins=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,ResourceQuota,DefaultTolerationSeconds,NodeRestriction,EventRateLimit
|
||||||
|
@ -97,7 +100,7 @@ data:
|
||||||
- --feature-gates=PodShareProcessNamespace=true
|
- --feature-gates=PodShareProcessNamespace=true
|
||||||
- --v=3
|
- --v=3
|
||||||
- --admission-control-config-file=/etc/kubernetes/apiserver/acconfig.yaml
|
- --admission-control-config-file=/etc/kubernetes/apiserver/acconfig.yaml
|
||||||
- --experimental-encryption-provider-config=/etc/kubernetes/apiserver/encryption_provider.yaml
|
- --encryption-provider-config=/etc/kubernetes/apiserver/encryption_provider.yaml
|
||||||
- --requestheader-allowed-names='aggregator'
|
- --requestheader-allowed-names='aggregator'
|
||||||
armada:
|
armada:
|
||||||
target_manifest: cluster-bootstrap
|
target_manifest: cluster-bootstrap
|
||||||
|
|
|
@ -108,10 +108,12 @@ data:
|
||||||
file_path: /hyperkube
|
file_path: /hyperkube
|
||||||
mode: 0555
|
mode: 0555
|
||||||
- path: /opt/kubernetes/bin/kubelet
|
- path: /opt/kubernetes/bin/kubelet
|
||||||
symlink: /opt/kubernetes/bin/hyperkube
|
tar_url: https://dl.k8s.io/v1.17.3/kubernetes-node-linux-amd64.tar.gz
|
||||||
|
tar_path: kubernetes/node/bin/kubelet
|
||||||
mode: 0555
|
mode: 0555
|
||||||
- path: /usr/local/bin/kubectl
|
- path: /usr/local/bin/kubectl
|
||||||
symlink: /opt/kubernetes/bin/hyperkube
|
tar_url: https://dl.k8s.io/v1.17.3/kubernetes-node-linux-amd64.tar.gz
|
||||||
|
tar_path: kubernetes/node/bin/kubectl
|
||||||
mode: 0555
|
mode: 0555
|
||||||
- path: /etc/logrotate.d/json-logrotate
|
- path: /etc/logrotate.d/json-logrotate
|
||||||
mode: 0444
|
mode: 0444
|
||||||
|
|
|
@ -147,10 +147,10 @@ data:
|
||||||
encryption_provider:
|
encryption_provider:
|
||||||
file: encryption_provider.yaml
|
file: encryption_provider.yaml
|
||||||
command_options:
|
command_options:
|
||||||
- '--experimental-encryption-provider-config=/etc/kubernetes/apiserver/encryption_provider.yaml'
|
- '--encryption-provider-config=/etc/kubernetes/apiserver/encryption_provider.yaml'
|
||||||
content:
|
content:
|
||||||
kind: EncryptionConfig
|
kind: EncryptionConfiguration
|
||||||
apiVersion: v1
|
apiVersion: apiserver.config.k8s.io/v1
|
||||||
eventconfig:
|
eventconfig:
|
||||||
file: eventconfig.yaml
|
file: eventconfig.yaml
|
||||||
content:
|
content:
|
||||||
|
|
|
@ -44,14 +44,14 @@ metadata:
|
||||||
name: common-addresses
|
name: common-addresses
|
||||||
path: .kubernetes.pod_cidr
|
path: .kubernetes.pod_cidr
|
||||||
dest:
|
dest:
|
||||||
path: .values.command_prefix[1]
|
path: .values.command_prefix[2]
|
||||||
pattern: SUB_POD_CIDR
|
pattern: SUB_POD_CIDR
|
||||||
- src:
|
- src:
|
||||||
schema: pegleg/CommonAddresses/v1
|
schema: pegleg/CommonAddresses/v1
|
||||||
name: common-addresses
|
name: common-addresses
|
||||||
path: .kubernetes.service_cidr
|
path: .kubernetes.service_cidr
|
||||||
dest:
|
dest:
|
||||||
path: .values.command_prefix[2]
|
path: .values.command_prefix[3]
|
||||||
pattern: SUB_SERVICE_CIDR
|
pattern: SUB_SERVICE_CIDR
|
||||||
|
|
||||||
# CA
|
# CA
|
||||||
|
@ -103,7 +103,8 @@ data:
|
||||||
release_group: airship-kubernetes-controller-manager
|
release_group: airship-kubernetes-controller-manager
|
||||||
values:
|
values:
|
||||||
command_prefix:
|
command_prefix:
|
||||||
- /controller-manager
|
- /hyperkube
|
||||||
|
- kube-controller-manager
|
||||||
- --cluster-cidr=SUB_POD_CIDR
|
- --cluster-cidr=SUB_POD_CIDR
|
||||||
- --service-cluster-ip-range=SUB_SERVICE_CIDR
|
- --service-cluster-ip-range=SUB_SERVICE_CIDR
|
||||||
- --node-monitor-period=5s
|
- --node-monitor-period=5s
|
||||||
|
|
|
@ -32,7 +32,7 @@ metadata:
|
||||||
name: common-addresses
|
name: common-addresses
|
||||||
path: .kubernetes.pod_cidr
|
path: .kubernetes.pod_cidr
|
||||||
dest:
|
dest:
|
||||||
path: .values.command_prefix[1]
|
path: .values.command_prefix[2]
|
||||||
pattern: POD_CIDR
|
pattern: POD_CIDR
|
||||||
|
|
||||||
# Secrets
|
# Secrets
|
||||||
|
@ -59,7 +59,8 @@ data:
|
||||||
release_group: airship-kubernetes-proxy
|
release_group: airship-kubernetes-proxy
|
||||||
values:
|
values:
|
||||||
command_prefix:
|
command_prefix:
|
||||||
- /proxy
|
- /hyperkube
|
||||||
|
- kube-proxy
|
||||||
- --cluster-cidr=POD_CIDR
|
- --cluster-cidr=POD_CIDR
|
||||||
- --proxy-mode=iptables
|
- --proxy-mode=iptables
|
||||||
kube_service:
|
kube_service:
|
||||||
|
|
|
@ -697,13 +697,13 @@ data:
|
||||||
rgw_s3_admin: docker.io/openstackhelm/ceph-config-helper:ubuntu_xenial-20191119
|
rgw_s3_admin: docker.io/openstackhelm/ceph-config-helper:ubuntu_xenial-20191119
|
||||||
kubernetes:
|
kubernetes:
|
||||||
apiserver:
|
apiserver:
|
||||||
anchor: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
anchor: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
apiserver: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
apiserver: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
dep_check: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
dep_check: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
||||||
key_rotate: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
key_rotate: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
controller-manager:
|
controller-manager:
|
||||||
anchor: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
anchor: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
controller_manager: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
controller_manager: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
coredns:
|
coredns:
|
||||||
coredns: docker.io/coredns/coredns:1.6.2
|
coredns: docker.io/coredns/coredns:1.6.2
|
||||||
test: quay.io/airshipit/promenade:64807416b71958e31156ef7a50e169813acc4e15
|
test: quay.io/airshipit/promenade:64807416b71958e31156ef7a50e169813acc4e15
|
||||||
|
@ -711,10 +711,10 @@ data:
|
||||||
etcd: quay.io/coreos/etcd:v3.4.2
|
etcd: quay.io/coreos/etcd:v3.4.2
|
||||||
etcdctl: quay.io/coreos/etcd:v3.4.2
|
etcdctl: quay.io/coreos/etcd:v3.4.2
|
||||||
haproxy:
|
haproxy:
|
||||||
anchor: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
anchor: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
haproxy: docker.io/library/haproxy:1.8.19
|
haproxy: docker.io/library/haproxy:1.8.19
|
||||||
test: docker.io/library/python:3.6
|
test: docker.io/library/python:3.6
|
||||||
hyperkube: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
hyperkube: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
ingress:
|
ingress:
|
||||||
dep_check: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
dep_check: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
||||||
entrypoint: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
entrypoint: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
||||||
|
@ -725,10 +725,10 @@ data:
|
||||||
keepalived: docker.io/osixia/keepalived:1.4.5
|
keepalived: docker.io/osixia/keepalived:1.4.5
|
||||||
pause: gcr.io/google-containers/pause-amd64:3.1
|
pause: gcr.io/google-containers/pause-amd64:3.1
|
||||||
proxy:
|
proxy:
|
||||||
proxy: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
proxy: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
scheduler:
|
scheduler:
|
||||||
anchor: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
anchor: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
scheduler: gcr.io/google-containers/hyperkube-amd64:v1.12.9
|
scheduler: gcr.io/google-containers/hyperkube-amd64:v1.17.3
|
||||||
validation:
|
validation:
|
||||||
pod_logs:
|
pod_logs:
|
||||||
image: docker.io/library/busybox:1.28.3
|
image: docker.io/library/busybox:1.28.3
|
||||||
|
@ -1073,7 +1073,7 @@ data:
|
||||||
prometheus_postgresql_exporter_create_user: docker.io/library/postgres:9.5
|
prometheus_postgresql_exporter_create_user: docker.io/library/postgres:9.5
|
||||||
promenade:
|
promenade:
|
||||||
dep_check: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
dep_check: quay.io/stackanetes/kubernetes-entrypoint:v0.3.1
|
||||||
hyperkube: gcr.io/google_containers/hyperkube-amd64:v1.11.6
|
hyperkube: gcr.io/google_containers/hyperkube-amd64:v1.17.3
|
||||||
ks_endpoints: docker.io/openstackhelm/heat:newton
|
ks_endpoints: docker.io/openstackhelm/heat:newton
|
||||||
ks_service: docker.io/openstackhelm/heat:newton
|
ks_service: docker.io/openstackhelm/heat:newton
|
||||||
ks_user: docker.io/openstackhelm/heat:newton
|
ks_user: docker.io/openstackhelm/heat:newton
|
||||||
|
|
|
@ -3,7 +3,7 @@ set -ex
|
||||||
|
|
||||||
CLUSTER_DNS=${CLUSTER_DNS:-10.96.0.10}
|
CLUSTER_DNS=${CLUSTER_DNS:-10.96.0.10}
|
||||||
|
|
||||||
KUBECTL_IMAGE=${KUBECTL_IMAGE:-gcr.io/google-containers/hyperkube-amd64:v1.11.6}
|
KUBECTL_IMAGE=${KUBECTL_IMAGE:-gcr.io/google-containers/hyperkube-amd64:v1.17.3}
|
||||||
UBUNTU_IMAGE=${UBUNTU_IMAGE:-docker.io/ubuntu:16.04}
|
UBUNTU_IMAGE=${UBUNTU_IMAGE:-docker.io/ubuntu:16.04}
|
||||||
|
|
||||||
cat > /tmp/hanging-cgroup-release.yaml << 'EOF'
|
cat > /tmp/hanging-cgroup-release.yaml << 'EOF'
|
||||||
|
@ -42,7 +42,7 @@ data:
|
||||||
EOF
|
EOF
|
||||||
cat >> /tmp/hanging-cgroup-release.yaml << EOF
|
cat >> /tmp/hanging-cgroup-release.yaml << EOF
|
||||||
---
|
---
|
||||||
apiVersion: extensions/v1beta1
|
apiVersion: apps/v1
|
||||||
kind: DaemonSet
|
kind: DaemonSet
|
||||||
metadata:
|
metadata:
|
||||||
name: hanging-cgroup-release
|
name: hanging-cgroup-release
|
||||||
|
@ -92,5 +92,5 @@ docker run --rm -i \
|
||||||
-v /etc/kubernetes/admin:/etc/kubernetes/admin \
|
-v /etc/kubernetes/admin:/etc/kubernetes/admin \
|
||||||
-e KUBECONFIG=/etc/kubernetes/admin/kubeconfig.yaml \
|
-e KUBECONFIG=/etc/kubernetes/admin/kubeconfig.yaml \
|
||||||
${KUBECTL_IMAGE} \
|
${KUBECTL_IMAGE} \
|
||||||
/kubectl apply -f /work/hanging-cgroup-release.yaml
|
kubectl apply -f /work/hanging-cgroup-release.yaml
|
||||||
|
|
||||||
|
|
|
@ -3,7 +3,7 @@ set -ex
|
||||||
|
|
||||||
CLUSTER_DNS=${CLUSTER_DNS:-10.96.0.10}
|
CLUSTER_DNS=${CLUSTER_DNS:-10.96.0.10}
|
||||||
|
|
||||||
KUBECTL_IMAGE=${KUBECTL_IMAGE:-gcr.io/google-containers/hyperkube-amd64:v1.11.6}
|
KUBECTL_IMAGE=${KUBECTL_IMAGE:-gcr.io/google-containers/hyperkube-amd64:v1.17.3}
|
||||||
UBUNTU_IMAGE=${UBUNTU_IMAGE:-docker.io/ubuntu:16.04}
|
UBUNTU_IMAGE=${UBUNTU_IMAGE:-docker.io/ubuntu:16.04}
|
||||||
|
|
||||||
cat > /tmp/rbd-roomba-scanner.yaml << 'EOF'
|
cat > /tmp/rbd-roomba-scanner.yaml << 'EOF'
|
||||||
|
@ -48,7 +48,7 @@ data:
|
||||||
EOF
|
EOF
|
||||||
cat >> /tmp/rbd-roomba-scanner.yaml << EOF
|
cat >> /tmp/rbd-roomba-scanner.yaml << EOF
|
||||||
---
|
---
|
||||||
apiVersion: extensions/v1beta1
|
apiVersion: apps/v1
|
||||||
kind: DaemonSet
|
kind: DaemonSet
|
||||||
metadata:
|
metadata:
|
||||||
name: rbd-roomba-scanner
|
name: rbd-roomba-scanner
|
||||||
|
@ -98,4 +98,4 @@ docker run --rm -i \
|
||||||
-v /etc/kubernetes/admin:/etc/kubernetes/admin \
|
-v /etc/kubernetes/admin:/etc/kubernetes/admin \
|
||||||
-e KUBECONFIG=/etc/kubernetes/admin/kubeconfig.yaml \
|
-e KUBECONFIG=/etc/kubernetes/admin/kubeconfig.yaml \
|
||||||
${KUBECTL_IMAGE} \
|
${KUBECTL_IMAGE} \
|
||||||
/kubectl apply -f /work/rbd-roomba-scanner.yaml
|
kubectl apply -f /work/rbd-roomba-scanner.yaml
|
||||||
|
|
Loading…
Reference in New Issue