Matthew Mosesohn
97ebbb9672
Add graceful upgrade process
Based on #718 introduced by rsmitty.
Includes all roles and all options to support deployment of
new hosts in case they were added to inventory.
Main difference here is that master role is evaluated first
so that master components get upgraded first.
Fixes #694
7 years ago
Spencer Smith
fbaef7e60f
specify grace period for draining
8 years ago
Spencer Smith
017a813621
first cut of an upgrade process
8 years ago
Matthew Mosesohn
948d9bdadb
Merge pull request #1019 from mattymo/issue1011
Update calico to v1.0.2
7 years ago
Matthew Mosesohn
b7258ec3bb
Merge pull request #1013 from mattymo/remove_masqerade_all
Disable kube_proxy_masquerade_all
7 years ago
Antoine Legrand
93cb5a5bd6
Merge pull request #1027 from hvnsweeting/master
Multiples doc fixes
7 years ago
Hung Nguyen Viet
d8f46c4410
Highlight important action
7 years ago
Hung Nguyen Viet
d0757ccc5e
Fix typo
7 years ago
Antoine Legrand
f4f730bd8a
Merge pull request #1025 from holser/bug/961
Install pip on Ubuntu
7 years ago
Matthew Mosesohn
f5e27f1a21
Merge pull request #1021 from holser/remove_deprecated
Replace always_run with check_mode
7 years ago
Matthew Mosesohn
bb6415ddc4
Merge pull request #1015 from holser/rkt_ssl_ca_dirs
Set ssl_ca_dirs for rkt based on fact
7 years ago
Sergii Golovatiuk
2b6179841b
Install pip on Ubuntu
- Refactor 'Check if bootstrap is needed' as ansible loop. This allows
to add new elements easily without refactoring. Add pip to the list.
- Refactor 'Install python 2.x' task to run once if any of rc
codes != 0. Actually, need_bootstrap is array of hashes, so map will
allow to get single array of rc statuses. So if status is not zero it
will be sorted and the last element will be get, converted to bool.
Closes : #961
Signed-off-by: Sergii Golovatiuk <sgolovatiuk@mirantis.com>
7 years ago
Antoine Legrand
e877cd2874
Merge pull request #1024 from holser/bug/961
Install pip on Ubuntu
7 years ago
Matthew Mosesohn
203ddfcd43
Merge pull request #1023 from mattymo/fix_dnsmasq_cleanup
Clean up dnsmasq purge task
7 years ago
Sergii Golovatiuk
732ae69d22
Install pip on Ubuntu
Closes : #961
Signed-off-by: Sergii Golovatiuk <sgolovatiuk@mirantis.com>
7 years ago
Antoine Legrand
9667ac3baf
Merge pull request #1022 from kubernetes-incubator/ant31-patch-1
Document gitlab-runner.sh
7 years ago
Matthew Mosesohn
b5be335db3
Clean up dnsmasq purge task
7 years ago
Antoine Legrand
d33945780d
Document gitlab-runner.sh
7 years ago
Sergii Golovatiuk
5f4cc3e1de
Replace always_run with check_mode
always_run was deprecated in Ansible 2.2 and will be removed in 2.4
ansible logs contain "[DEPRECATION WARNING]: always_run is deprecated.
Use check_mode = no instead". This patch fix deprecation.
7 years ago
Matthew Mosesohn
ec567bd53c
Update calico to v1.0.2
Also calico-cni to v1.5.6, calico-policy to v0.5.2
Fixes : #1011
7 years ago
Sergii Golovatiuk
aeadaa1184
Set ssl_ca_dirs for rkt based on fact
Since systemd kubelet.service has {{ ssl_ca_dirs }}, fact should be
gathered before writing kubelet.service.
Closes : #1007
Signed-off-by: Sergii Golovatiuk <sgolovatiuk@mirantis.com>
7 years ago
Matthew Mosesohn
2f0f0006e3
Merge pull request #988 from mattymo/feat/rolling3
Add CI cases for testing upgrade from v2.0.1 release
7 years ago
Matthew Mosesohn
de047a2b8c
Merge pull request #983 from vwfs/centos_kernel_upgrade
Add kernel upgrade for CentOS
7 years ago
Antoine Legrand
86a35652bb
Merge pull request #1009 from mattymo/dnsmasq_updates
Enable reset of dnsmasq if manifest or config changes
7 years ago
Matthew Mosesohn
6ae70e03cb
fixup upgrades for canal and weave
7 years ago
Matthew Mosesohn
2c532cb74d
Disable kube_proxy_masquerade_all
Fixes #1012
7 years ago
Matthew Mosesohn
779f20d64e
Merge pull request #1010 from bogdando/fixes
Fix misleading HA docs
7 years ago
Bogdan Dobrelya
89ae9f1f88
Merge pull request #1002 from code0x9/master
use ansible sysctl module for config ip forwarding
7 years ago
Bogdan Dobrelya
ed1ab11001
Fix misleading HA docs
Signed-off-by: Bogdan Dobrelya <bogdando@mail.ru>
8 years ago
Alexander Block
d2e010cbe1
Add kernel upgrade for CentOS
7 years ago
Matthew Mosesohn
a44a0990f5
Enable reset of dnsmasq if manifest or config changes
7 years ago
Matthew Mosesohn
2f88c9eefe
Merge pull request #989 from holser/kubelet_remedy
Kubernetes Reliability Improvements
7 years ago
Matthew Mosesohn
60f1936a62
Merge pull request #1004 from galthaus/kubelet-load-modules
Allow kubelet to load kernel modules
7 years ago
Matthew Mosesohn
ee15f99dd7
Add CI cases for testing upgrade from v2.0.1 release
These are manual trigger jobs, but should be run if any PR
impacts upgrades.
7 years ago
Matthew Mosesohn
b0ee27ba46
Merge pull request #1006 from mattymo/fix_weave_upgrade
Enable weave upgrade from previous versions
7 years ago
Antoine Legrand
067bbaa473
Merge pull request #1001 from idcrook/kargo-issue-1000-efk-enable
removed explicit role for efk in cluster.yml
7 years ago
Sergii Golovatiuk
c07d60bc90
Kubernetes Reliability Improvements
- Exclude kubelet CPU/RAM (kube-reserved) from cgroup. It decreases a
chance of overcommitment
- Add a possibility to modify Kubelet node-status-update-frequency
- Add a posibility to configure node-monitor-grace-period,
node-monitor-period, pod-eviction-timeout for Kubernetes controller
manager
- Add Kubernetes Relaibility Documentation with recomendations for
various scenarios.
Signed-off-by: Sergii Golovatiuk <sgolovatiuk@mirantis.com>
7 years ago
Matthew Mosesohn
29fd957352
Enable weave upgrade from previous versions
Raise readiness probe initial time to 60 (was 30)
7 years ago
Matthew Mosesohn
ef10ce04e2
Merge pull request #1005 from rutsky/patch-2
fix kube_apiserver_ip/kube_apiserver_port description
7 years ago
Vladimir Rutsky
f0269b28f4
fix kube_apiserver_ip/kube_apiserver_port description
7 years ago
Matthew Mosesohn
0a7c6eb9dc
Merge pull request #998 from mattymo/fix_upgrade_daemonsets
Fix upgrade for all daemonset type resources
7 years ago
Greg Althaus
3f0c13af8a
Make kubelet_load_modules always present but false.
Update code and docs for that assumption.
7 years ago
Greg Althaus
fcd78eb1f7
Due to the nsenter and other reworks, it appears that
kubelet lost the ability to load kernel modules. This
puts that back by adding the lib/modules mount to kubelet.
The new variable kubelet_load_modules can be set to true
to enable this item. It is OFF by default.
7 years ago
Matthew Mosesohn
17dfae6d4e
Merge pull request #999 from holser/decrease_weave_ram_limits
Lower weave RAM settings.
7 years ago
Mark Lee
e414c25fd7
follow sysctl.conf file symlink if linked
7 years ago
Mark Lee
34a71554ae
use ansible sysctl module for config ip forwarding
7 years ago
Bogdan Dobrelya
3b1a196c75
Merge pull request #902 from insequent/master
Adding vault role
7 years ago
Bogdan Dobrelya
105dbf471e
Merge pull request #993 from code0x9/master
enable proxy support on docker repository
7 years ago
David Crook
d4d9f27a8d
removed explicit role for efk in cluster.yml
7 years ago
Antoine Legrand
68df0d4909
Merge pull request #986 from vwfs/dnsmasq_system_nameservers
Also add the system nameservers to upstream servers in dnsmasq
7 years ago