richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1018 Commits
29 Branches
81 Tags
150 MiB
Tree: 8eb26c21be
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8eb26c21be'
${ noResults }
kubespray/roles/kubernetes/preinstall/tasks/main.yml

155 lines
4.6 KiB
Raw Normal View History

install docker on a largest number of linux distribution (based on https://github.com/marklee77/ansible-role-docker)
9 years ago
ensure bin dir for coreos before anything else
8 years ago
Fail all nodes on error
8 years ago
Adjust collect-info playbook Cleanup collected artifacts, drop unrelated files/commands. Always install gitinfos script to binaries for external use. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
script which gives info about the deployment state fix script location
8 years ago
don't run gitinfos by default
8 years ago
script which gives info about the deployment state fix script location
8 years ago
Fix set_facts visibility Move set_facts to the preinstall scope, so every role may see it. For example, network plugins to see the etcd_endpoint. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Flannel running as pod
8 years ago
first version of CoreOS on GCE Please enter the commit message for your changes. Lines starting
8 years ago
split network plugins into distinct roles
8 years ago
Fix etcd standalone deployment etcd facts are generated in kubernetes/preinstall, so etcd nodes need to be evaluated first before the rest of the deployment. Moved several directory facts from kubernetes/node to kubernetes/preinstall because they are not backward dependent.
8 years ago
split network plugins into distinct roles
8 years ago
Fix etcd standalone deployment etcd facts are generated in kubernetes/preinstall, so etcd nodes need to be evaluated first before the rest of the deployment. Moved several directory facts from kubernetes/node to kubernetes/preinstall because they are not backward dependent.
8 years ago
split network plugins into distinct roles
8 years ago
Fix etcd standalone deployment etcd facts are generated in kubernetes/preinstall, so etcd nodes need to be evaluated first before the rest of the deployment. Moved several directory facts from kubernetes/node to kubernetes/preinstall because they are not backward dependent.
8 years ago
split network plugins into distinct roles
8 years ago
Fix etcd standalone deployment etcd facts are generated in kubernetes/preinstall, so etcd nodes need to be evaluated first before the rest of the deployment. Moved several directory facts from kubernetes/node to kubernetes/preinstall because they are not backward dependent.
8 years ago
split network plugins into distinct roles
8 years ago
choose between gce and aws cloud providers
8 years ago
add basic azure support for kargo
8 years ago
Implemented cloud-provider integration for OpenStack. Currently kubespray does not install kubernetes in a way that allows cinder volumes to be used. This commit provides the necessary cloud configuration file and configures kubelet and kube-apiserver to use it.
8 years ago
choose between gce and aws cloud providers
8 years ago
add basic azure support for kargo
8 years ago
Fix ipv4 forwarding on GCE ipv4 forwarding gets broken when restarting networking, which breaks all networking for all pods.
8 years ago
Change GCE sysctls placement and docs Override GCE sysctl in /etc/sysctl.d/99-sysctl.conf instead of the /etc/sysctl.d/11-gce-network-security.conf. It is recreated by GCE, f.e. if gcloud CLI invokes some security related changes, thus losing customizations we want to be persistent. Update cloud providers firewall requirements in calico docs. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix ipv4 forwarding on GCE ipv4 forwarding gets broken when restarting networking, which breaks all networking for all pods.
8 years ago
split network plugins into distinct roles
8 years ago
Adding support for canal network plugin This patch provides support for Canal network plugin installation as a self-hosted app, see the following link for details: https://github.com/tigera/canal/tree/master/k8s-install
8 years ago
split network plugins into distinct roles
8 years ago
Need to use separate stanzas for each repo because the args are different. Sigh.
8 years ago
Use update_cache when possible
8 years ago
using apt module instead of command module to install python-apt
8 years ago
common role in order to support other linux distribs
9 years ago
Flannel running as pod
8 years ago
install epel-release on RHEL7
8 years ago
Flannel running as pod
8 years ago
split role download and preinstall
9 years ago
Fix docker install on rhel7
8 years ago
Parameterize several dependency endpoints so that they can be overridden with internal mirrors. Signed-off-by: Chad Swenson <chadswen@gmail.com>
8 years ago
use docker repository to install on CentOS
8 years ago
consolidate EPEL change into a single task as per @smana request
8 years ago
use docker repository to install on CentOS
8 years ago
install epel release for rhel install required packages before common roles/kubernetes/preinstall/tasks/main.yml
8 years ago
Flannel running as pod
8 years ago
split role download and preinstall
9 years ago
Add retries for packages installation Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Add retry_stagger var for failed download/pushes. * Add the retry_stagger var to tweak push and retry time strategies. * Add large deployments related docs. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
first version of CoreOS on GCE Please enter the commit message for your changes. Lines starting
8 years ago
Flannel running as pod
8 years ago
Add option to disable ipv6 dns lookup New variable disable_ipv6_dns in kubernetes/preinstall.
8 years ago
Flannel running as pod
8 years ago
split role download and preinstall
9 years ago
Flannel running as pod
8 years ago
common role in order to support other linux distribs
9 years ago
Implemented cloud-provider integration for OpenStack. Currently kubespray does not install kubernetes in a way that allows cinder volumes to be used. This commit provides the necessary cloud configuration file and configures kubelet and kube-apiserver to use it.
8 years ago
add basic azure support for kargo
8 years ago
move /etc/hosts configuration in 'preinstall' role
8 years ago
  1. ---
  2. - name: Force binaries directory for CoreOS
  3. set_fact:
  4. bin_dir: "/opt/bin"
  5. when: ansible_os_family == "CoreOS"
  7. - name: check bin dir exists
  8. file:
  9. path: "{{bin_dir}}"
  10. state: directory
  11. owner: root
  12. become: true
  14. - include: gitinfos.yml
  15. when: run_gitinfos
  17. - include: set_facts.yml
  19. - name: gather os specific variables
  20. include_vars: "{{ item }}"
  21. with_first_found:
  22. - files:
  23. - "{{ ansible_distribution|lower }}-{{ ansible_distribution_version|lower|replace('/', '_') }}.yml"
  24. - "{{ ansible_distribution|lower }}-{{ ansible_distribution_release }}.yml"
  25. - "{{ ansible_distribution|lower }}-{{ ansible_distribution_major_version|lower|replace('/', '_') }}.yml"
  26. - "{{ ansible_distribution|lower }}.yml"
  27. - "{{ ansible_os_family|lower }}.yml"
  28. - defaults.yml
  29. paths:
  30. - ../vars
  31. skip: true
  33. - name: Create kubernetes config directory
  34. file:
  35. path: "{{ kube_config_dir }}"
  36. state: directory
  37. owner: kube
  38. when: "{{ inventory_hostname in groups['k8s-cluster'] }}"
  40. - name: Create kubernetes script directory
  41. file:
  42. path: "{{ kube_script_dir }}"
  43. state: directory
  44. owner: kube
  45. when: "{{ inventory_hostname in groups['k8s-cluster'] }}"
  47. - name: Create kubernetes manifests directory
  48. file:
  49. path: "{{ kube_manifest_dir }}"
  50. state: directory
  51. owner: kube
  52. when: "{{ inventory_hostname in groups['k8s-cluster'] }}"
  54. - name: Create kubernetes logs directory
  55. file:
  56. path: "{{ kube_log_dir }}"
  57. state: directory
  58. owner: kube
  59. when: ansible_service_mgr in ["sysvinit","upstart"] and "{{ inventory_hostname in groups['k8s-cluster'] }}"
  61. - name: check cloud_provider value
  62. fail:
  63. msg: "If set the 'cloud_provider' var must be set either to 'generic', 'gce', 'aws', 'azure' or 'openstack'"
  64. when: cloud_provider is defined and cloud_provider not in ['generic', 'gce', 'aws', 'openstack', 'azure']
  66. - include: openstack-credential-check.yml
  67. when: cloud_provider is defined and cloud_provider == 'openstack'
  69. - include: azure-credential-check.yml
  70. when: cloud_provider is defined and cloud_provider == 'azure'
  72. - name: Fix ipv4 forward rule in GCE security policy
  73. lineinfile:
  74. dest: /etc/sysctl.d/99-sysctl.conf
  75. regexp: '^net.ipv4.ip_forward='
  76. line: 'net.ipv4.ip_forward=1'
  77. state: present
  78. create: yes
  79. backup: yes
  80. validate: 'sysctl -f %s'
  81. when: cloud_provider is defined and cloud_provider == 'gce'
  83. - name: Create cni directories
  84. file:
  85. path: "{{ item }}"
  86. state: directory
  87. owner: kube
  88. with_items:
  89. - "/etc/cni/net.d"
  90. - "/opt/cni/bin"
  91. when: kube_network_plugin in ["calico", "weave", "canal"] and "{{ inventory_hostname in groups['k8s-cluster'] }}"
  93. - name: Update package management cache (YUM)
  94. yum: update_cache=yes name='*'
  95. when: ansible_pkg_mgr == 'yum'
  97. - name: Install latest version of python-apt for Debian distribs
  98. apt: name=python-apt state=latest update_cache=yes cache_valid_time=3600
  99. when: ansible_os_family == "Debian"
  101. - name: Install python-dnf for latest RedHat versions
  102. command: dnf install -y python-dnf yum
  103. when: ansible_distribution == "Fedora" and
  104. ansible_distribution_major_version > 21
  105. changed_when: False
  107. - name: Install epel-release on RedHat/CentOS
  108. shell: rpm -qa | grep epel-release || rpm -ivh {{ epel_rpm_download_url }}
  109. when: ansible_distribution in ["CentOS","RedHat"] and
  110. ansible_distribution_major_version >= 7
  111. changed_when: False
  113. - name: Install packages requirements
  114. action:
  115. module: "{{ ansible_pkg_mgr }}"
  116. name: "{{ item }}"
  117. state: latest
  118. register: pkgs_task_result
  119. until: pkgs_task_result|success
  120. retries: 4
  121. delay: "{{ retry_stagger | random + 3 }}"
  122. with_items: "{{required_pkgs | default([]) | union(common_required_pkgs|default([]))}}"
  123. when: ansible_os_family != "CoreOS"
  125. - name: Disable IPv6 DNS lookup
  126. lineinfile:
  127. dest: /etc/gai.conf
  128. line: "precedence ::ffff:0:0/96 100"
  129. state: present
  130. backup: yes
  131. when: disable_ipv6_dns and ansible_os_family != "CoreOS"
  133. # Todo : selinux configuration
  134. - name: Set selinux policy to permissive
  135. selinux: policy=targeted state=permissive
  136. when: ansible_os_family == "RedHat"
  137. changed_when: False
  139. - name: Write openstack cloud-config
  140. template:
  141. src: openstack-cloud-config.j2
  142. dest: "{{ kube_config_dir }}/cloud_config"
  143. group: "{{ kube_cert_group }}"
  144. mode: 0640
  145. when: cloud_provider is defined and cloud_provider == "openstack"
  147. - name: Write azure cloud-config
  148. template:
  149. src: azure-cloud-config.j2
  150. dest: "{{ kube_config_dir }}/cloud_config"
  151. group: "{{ kube_cert_group }}"
  152. mode: 0640
  153. when: cloud_provider is defined and cloud_provider == "azure"
  155. - include: etchosts.yml