richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4572 Commits
29 Branches
80 Tags
156 MiB
Tree: 554857da97
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '554857da97'
${ noResults }
kubespray/docs/upgrades.md

141 lines
4.4 KiB
Raw Normal View History

rename almost all mentions of kargo
7 years ago
Add document outlining upgrade process
7 years ago
rename almost all mentions of kargo
7 years ago
Add document outlining upgrade process
7 years ago
rename almost all mentions of kargo
7 years ago
Add document outlining upgrade process
7 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Add document outlining upgrade process
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Add document outlining upgrade process
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Add document outlining upgrade process
7 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Instead of doc update, change the verify step
6 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Support multiple inventory files under individual inventory directory
6 years ago
Update upgrades.md Clarify that the `kube_version` environment variable is needed for the CLI "graceful upgrade". Also add and example to check that the upgrade was successful.
7 years ago
Add graceful upgrade process Based on #718 introduced by rsmitty. Includes all roles and all options to support deployment of new hosts in case they were added to inventory. Main difference here is that master role is evaluated first so that master components get upgraded first. Fixes #694
7 years ago
Add document outlining upgrade process
7 years ago
Fixed Formatting / Ansbile-Playbook Command - added -b and fixed typo in ansible-playbook command - fixed formatting issue
7 years ago
Upgrade to kubeadm (#1667) * Enable upgrade to kubeadm * fix kubedns upgrade * try upgrade route * use init/upgrade strategy for kubeadm and ignore kubedns svc * Use bin_dir for kubeadm * delete more secrets * fix waiting for terminating pods * Manually enforce kube-proxy for kubeadm deploy * remove proxy. update to kubeadm 1.8.0rc1
7 years ago
Add tags to deploy components by --tags option (#2960) * Add tags for cert serial tasks This will help facilitate tag-based deployment of specific components. * fixup kubernetes node
6 years ago
Update upgrades.md
6 years ago
Add tags to deploy components by --tags option (#2960) * Add tags for cert serial tasks This will help facilitate tag-based deployment of specific components. * fixup kubernetes node
6 years ago
add docker upgrade tag doc
6 years ago
Add tags to deploy components by --tags option (#2960) * Add tags for cert serial tasks This will help facilitate tag-based deployment of specific components. * fixup kubernetes node
6 years ago
  1. Upgrading Kubernetes in Kubespray
  2. =============================
  4. #### Description
  6. Kubespray handles upgrades the same way it handles initial deployment. That is to
  7. say that each component is laid down in a fixed order. You should be able to
  8. upgrade from Kubespray tag 2.0 up to the current master without difficulty. You can
  9. also individually control versions of components by explicitly defining their
  10. versions. Here are all version vars for each component:
  12. * docker_version
  13. * kube_version
  14. * etcd_version
  15. * calico_version
  16. * calico_cni_version
  17. * weave_version
  18. * flannel_version
  19. * kubedns_version
  21. #### Unsafe upgrade example
  23. If you wanted to upgrade just kube_version from v1.4.3 to v1.4.6, you could
  24. deploy the following way:
  26. ```
  27. ansible-playbook cluster.yml -i inventory/sample/hosts.ini -e kube_version=v1.4.3
  28. ```
  30. And then repeat with v1.4.6 as kube_version:
  32. ```
  33. ansible-playbook cluster.yml -i inventory/sample/hosts.ini -e kube_version=v1.4.6
  34. ```
  36. #### Graceful upgrade
  38. Kubespray also supports cordon, drain and uncordoning of nodes when performing
  39. a cluster upgrade. There is a separate playbook used for this purpose. It is
  40. important to note that upgrade-cluster.yml can only be used for upgrading an
  41. existing cluster. That means there must be at least 1 kube-master already
  42. deployed.
  44. ```
  45. git fetch origin
  46. git checkout origin/master
  47. ansible-playbook upgrade-cluster.yml -b -i inventory/sample/hosts.ini -e kube_version=v1.6.0
  48. ```
  50. After a successul upgrade, the Server Version should be updated:
  52. ```
  53. $ kubectl version
  54. Client Version: version.Info{Major:"1", Minor:"6", GitVersion:"v1.6.0", GitCommit:"fff5156092b56e6bd60fff75aad4dc9de6b6ef37", GitTreeState:"clean", BuildDate:"2017-03-28T19:15:41Z", GoVersion:"go1.8", Compiler:"gc", Platform:"darwin/amd64"}
  55. Server Version: version.Info{Major:"1", Minor:"6", GitVersion:"v1.6.0+coreos.0", GitCommit:"8031716957d697332f9234ddf85febb07ac6c3e3", GitTreeState:"clean", BuildDate:"2017-03-29T04:33:09Z", GoVersion:"go1.7.5", Compiler:"gc", Platform:"linux/amd64"}
  56. ```
  58. #### Upgrade order
  60. As mentioned above, components are upgraded in the order in which they were
  61. installed in the Ansible playbook. The order of component installation is as
  62. follows:
  64. * Docker
  65. * etcd
  66. * kubelet and kube-proxy
  67. * network_plugin (such as Calico or Weave)
  68. * kube-apiserver, kube-scheduler, and kube-controller-manager
  69. * Add-ons (such as KubeDNS)
  71. #### Upgrade considerations
  73. Kubespray supports rotating certificates used for etcd and Kubernetes
  74. components, but some manual steps may be required. If you have a pod that
  75. requires use of a service token and is deployed in a namespace other than
  76. `kube-system`, you will need to manually delete the affected pods after
  77. rotating certificates. This is because all service account tokens are dependent
  78. on the apiserver token that is used to generate them. When the certificate
  79. rotates, all service account tokens must be rotated as well. During the
  80. kubernetes-apps/rotate_tokens role, only pods in kube-system are destroyed and
  81. recreated. All other invalidated service account tokens are cleaned up
  82. automatically, but other pods are not deleted out of an abundance of caution
  83. for impact to user deployed pods.
  85. ### Component-based upgrades
  87. A deployer may want to upgrade specific components in order to minimize risk
  88. or save time. This strategy is not covered by CI as of this writing, so it is
  89. not guaranteed to work.
  91. These commands are useful only for upgrading fully-deployed, healthy, existing
  92. hosts. This will definitely not work for undeployed or partially deployed
  93. hosts.
  95. Upgrade docker:
  97. ```
  98. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=docker
  99. ```
  101. Upgrade etcd:
  103. ```
  104. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=etcd
  105. ```
  107. Upgrade vault:
  109. ```
  110. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=vault
  111. ```
  113. Upgrade kubelet:
  115. ```
  116. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=node --skip-tags=k8s-gen-certs,k8s-gen-tokens
  117. ```
  119. Upgrade Kubernetes master components:
  121. ```
  122. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=master
  123. ```
  125. Upgrade network plugins:
  127. ```
  128. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=network
  129. ```
  131. Upgrade all add-ons:
  133. ```
  134. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=apps
  135. ```
  137. Upgrade just helm (assuming `helm_enabled` is true):
  139. ```
  140. ansible-playbook -b -i inventory/sample/hosts.ini cluster.yml --tags=helm
  141. ```