github-personal/terraform-render-bootstrap
1
0
Fork 0
mirror of https://github.com/outbackdingo/terraform-render-bootstrap.git synced 2026-01-27 10:20:45 +00:00
Code Issues Packages Projects Releases Wiki Activity
517 Commits 1 Branch 20 Tags
master
Commit Graph

181 Commits

Author SHA1 Message Date
Dalton Hubble
ec48758c5e Remove experimental self-hosted etcd options 2017-12-11 21:51:07 -08:00
Dalton Hubble
dbcf3b599f Remove flock from bootstrap-apiserver and kube-apiserver 
* https://github.com/kubernetes-incubator/bootkube/pull/616
 2017-11-28 21:13:15 -08:00
Dalton Hubble
a613c7dfa6 Remove unused critical-pod annotations in manifests 
* https://github.com/kubernetes-incubator/bootkube/pull/777
 2017-11-28 21:10:05 -08:00
Dalton Hubble
ab4d7becce Disable Calico termination grace period 
* Disable termination grace period to account for Kubernetes v1.8
changes to DaemonSet rolling behavior
* https://github.com/projectcalico/calico/pull/1293
* Fix IPIP mode casing https://github.com/projectcalico/calico/pull/1233
 2017-11-17 00:40:25 -08:00
Dalton Hubble
ec5f86b014 Use service accounts for kube-proxy and pod-checkpointer 
* Create separate service accounts for kube-proxy and pod-checkpointer
* Switch kube-proxy and pod-checkpointer to use a kubeconfig that
references the local service account, rather than the host kubeconfig
* https://github.com/kubernetes-incubator/bootkube/pull/767
 2017-11-17 00:33:22 -08:00
Dalton Hubble
f76e58b56d Update checkpointer with state machine impl 
* https://github.com/kubernetes-incubator/bootkube/pull/759
 2017-11-08 21:45:01 -08:00
Dalton Hubble
383aba4e8e Add /lib/modules mount to kube-proxy 
* Starting in Kubernetes v1.8, kube-proxy modprobes ipvs
* kube-proxy still uses iptables, but in future may switch to
ipvs, this prepares the way for that to happen
* https://github.com/kubernetes-incubator/bootkube/issues/741
 2017-11-08 21:39:07 -08:00
Dalton Hubble
74366f6076 Enable hairpinMode in flannel CNI config 
* Allow pods to communicate with themselves via service IP
* https://github.com/coreos/flannel/pull/849
 2017-10-22 13:51:46 -07:00
Dalton Hubble
3ac28c9210 Add --no-negcache flag to dnsmasq args 
* e1d6bcc227
 2017-10-21 17:15:19 -07:00
Dalton Hubble
64748203ba Update assets generation for bootkube v0.8.0 
* Update from Kubernetes v1.7.7 to v1.8.1
 2017-10-19 20:48:24 -07:00
Dalton Hubble
125f29d43d Render images from the container_images map variable 
* Container images may be customized to facilitate using mirrored
images or development with custom images
 2017-10-08 22:29:26 -07:00
Dalton Hubble
aded06a0a7 Update assets generation for bootkube v0.7.0 2017-10-03 09:27:30 -07:00
Dalton Hubble
d93b7e4dc8 Update kube-dns image to address dnsmasq vulnerability 
* https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html
 2017-10-02 10:23:22 -07:00
Dalton Hubble
48b33db1f1 Update Calico from v2.6.0 to v2.6.1 2017-09-30 16:12:29 -07:00
Dalton Hubble
8a9b6f1270 Update Calico from v2.5.1 to v2.6.0 
* Update cni sidecar image from v1.10.0 to v1.11.0
* Lower log level in CNI config from debug to info
 2017-09-28 20:43:15 -07:00
Dalton Hubble
9c144e6522 Add kube-etcd-network-checkpointer for self-hosted etcd only 2017-09-26 00:39:42 -07:00
Dalton Hubble
dbfb11c6ea Update assets generation for bootkube v0.6.2 
* Update hyperkube to v1.7.5_coreos.0
* Update etcd-operator to v0.5.0
* Update pod-checkpointer
* Update flannel-cni to v0.2.0
* Change etcd-operator TPR to CRD
 2017-09-08 13:46:28 -07:00
Dalton Hubble
5ffbfec46d Configure the Calico MTU 
* Add a network_mtu input variable (default 1500)
* Set the Calico CNI config (i.e. workload network interfaces)
* Set the Calico IP in IP MTU (for tunnel network interfaces)
 2017-09-05 10:50:26 -07:00
Dalton Hubble
a52f99e8cc Add support for calico networking 
* Add support for using Calico pod networking instead of flannel
* Add variable "networking" which may be "calico" or "flannel"
* Users MUST move the contents of assets_dir/manifests-networking
into the assets_dir/manifests directory before running bootkube
start. This is needed because Terraform cannot generate conditional
files into a template_dir because other resources write to the same
directory and delete.
https://github.com/terraform-providers/terraform-provider-template/issues/10
 2017-09-01 10:27:43 -07:00
Dalton Hubble
1c1c4b36f8 Enable hairpin mode on cbr0 in kube-flannel-cfg 2017-08-16 18:22:42 -07:00
Dalton Hubble
e7d2c1e597 Update assets generation for bootkube v0.6.0 2017-07-24 13:12:32 -07:00
Dalton Hubble
ce1cc6ae34 Update assets generation for bootkube v0.5.1 2017-07-19 10:46:24 -07:00
Dalton Hubble
c8c56ca64a Update assets generation for bootkube v0.5.0 2017-07-12 19:17:11 -07:00
Dalton Hubble
99f50c5317 *: Upgrade manifests for Kubernetes v1.6.6 and bootkube v0.4.5 
* Enable TLS for experimental self-hosted etcd
* Update the flannel Daemonset based on upstream
* Switch control plane components to run as non-root
* Add UpdateStrategy to control plane components
 2017-06-24 14:05:32 -07:00
Dalton Hubble
21131aa65e Add generated etcd credentials to kube-apiserver-secret.yaml 2017-06-07 16:11:19 -07:00
Dalton Hubble
6e8f0f9a1d Generate on-host etcd CA, client, and peer TLS cert/key pairs 2017-06-06 18:01:36 -07:00
Dalton Hubble
209da6d09b resources: Move self-hosted etcd service and TPR 2017-05-18 15:25:09 -07:00
Dalton Hubble
aa7cb4793a Update bootkube assets for v0.4.3 
* See upstream
https://github.com/kubernetes-incubator/bootkube/releases/tag/v0.4.3
 2017-05-18 14:43:38 -07:00
Dalton Hubble
fb76a401a2 Update etcd-operator to v0.2.6 and disable Google analytics 2017-05-13 15:39:58 -07:00
Dalton Hubble
909d33e123 resources: Add experimental self-hosted etcd manifests 2017-05-11 13:39:07 -07:00
Dalton Hubble
35fd313f8b Initial commit for bootkube v0.4.2 render 
* Lacks etcd TLS, self-hosted etcd, and experimental manifests
 2017-05-01 11:17:20 -07:00