Merge pull request #21504 from luxas/fix_certs_for_hyperkube

Auto commit by PR queue bot
2025-10-31 10:18:13 +00:00 · 2016-02-26 06:53:29 -08:00
parent ce48ec7707 e9af6c34af
commit 766657cd19
8 changed files with 78 additions and 61 deletions
--- a/docs/getting-started-guides/docker-multinode/deployDNS.md
+++ b/docs/getting-started-guides/docker-multinode/deployDNS.md
@@ -32,55 +32,42 @@ Documentation for other releases can be found at

 <!-- END MUNGE: UNVERSIONED_WARNING -->

-## Deploy DNS
+## Deploy DNS on `docker` and `docker-multinode`

 ### Get the template file

-First of all, download the template dns rc and svc file from
+First of all, download the dns template

-[skydns-rc template](skydns-rc.yaml.in)
+[skydns template](skydns.yaml.in)

-[skydns-svc template](skydns-svc.yaml.in)
+### Set environment variables

-### Set env
+Then you need to set `DNS_REPLICAS`, `DNS_DOMAIN` and `DNS_SERVER_IP` envs

-Then you need to set `DNS_REPLICAS` , `DNS_DOMAIN` , `DNS_SERVER_IP` , `KUBE_SERVER` ENV.
-
-```
+```console
 $ export DNS_REPLICAS=1

 $ export DNS_DOMAIN=cluster.local # specify in startup parameter `--cluster-domain` for containerized kubelet 

 $ export DNS_SERVER_IP=10.0.0.10  # specify in startup parameter `--cluster-dns` for containerized kubelet 
-
-$ export KUBE_SERVER=10.10.103.250 # your master server ip, you may change it
 ```

-### Replace the corresponding value in the template.
+### Replace the corresponding value in the template and create the pod

-```
-$ sed -e "s/{{ pillar\['dns_replicas'\] }}/${DNS_REPLICAS}/g;s/{{ pillar\['dns_domain'\] }}/${DNS_DOMAIN}/g;s/{kube_server_url}/${KUBE_SERVER}/g;" skydns-rc.yaml.in > ./skydns-rc.yaml
+```console
+$ sed -e "s/{{ pillar\['dns_replicas'\] }}/${DNS_REPLICAS}/g;s/{{ pillar\['dns_domain'\] }}/${DNS_DOMAIN}/g;s/{{ pillar\['dns_server'\] }}/${DNS_SERVER_IP}/g" skydns.yaml.in > ./skydns.yaml

-$ sed -e "s/{{ pillar\['dns_server'\] }}/${DNS_SERVER_IP}/g" skydns-svc.yaml.in > ./skydns-svc.yaml
-```
+# If the kube-system namespace isn't already created, create it
+$ kubectl get ns
+$ kubectl create -f ./kube-system.yaml

-### Use `kubectl` to create skydns rc and service
-
-
-```
-$ kubectl -s "$KUBE_SERVER:8080" --namespace=kube-system create -f ./skydns-rc.yaml
-
-$ kubectl -s "$KUBE_SERVER:8080" --namespace=kube-system create -f ./skydns-svc.yaml
+$ kubectl create -f ./skydns.yaml
 ```

 ### Test if DNS works

 Follow [this link](../../../cluster/addons/dns/#how-do-i-test-if-it-is-working) to check it out.

-
-
-
-
 <!-- BEGIN MUNGE: GENERATED_ANALYTICS -->
 [![Analytics](https://kubernetes-site.appspot.com/UA-36037335-10/GitHub/docs/getting-started-guides/docker-multinode/deployDNS.md?pixel)]()
 <!-- END MUNGE: GENERATED_ANALYTICS -->
--- a/docs/getting-started-guides/docker-multinode/kube-system.yaml
+++ b/docs/getting-started-guides/docker-multinode/kube-system.yaml
@@ -0,0 +1,4 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: kube-system
--- a/docs/getting-started-guides/docker-multinode/skydns-svc.yaml.in
+++ b/docs/getting-started-guides/docker-multinode/skydns-svc.yaml.in
@@ -1,20 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: kube-dns
-  namespace: kube-system
-  labels:
-    k8s-app: kube-dns
-    kubernetes.io/cluster-service: "true"
-    kubernetes.io/name: "KubeDNS"
-spec:
-  selector:
-    k8s-app: kube-dns
-  clusterIP:  {{ pillar['dns_server'] }}
-  ports:
-  - name: dns
-    port: 53
-    protocol: UDP
-  - name: dns-tcp
-    port: 53
-    protocol: TCP
--- a/docs/getting-started-guides/docker-multinode/skydns-rc.yaml.in
+++ b/docs/getting-started-guides/docker-multinode/skydns-rc.yaml.in
@@ -1,31 +1,35 @@
 apiVersion: v1
 kind: ReplicationController
 metadata:
-  name: kube-dns-v8
+  name: kube-dns-v10
  namespace: kube-system
  labels:
    k8s-app: kube-dns
-    version: v8
+    version: v10
    kubernetes.io/cluster-service: "true"
 spec:
  replicas: {{ pillar['dns_replicas'] }}
  selector:
    k8s-app: kube-dns
-    version: v8
+    version: v10
  template:
    metadata:
      labels:
        k8s-app: kube-dns
-        version: v8
+        version: v10
        kubernetes.io/cluster-service: "true"
    spec:
      containers:
      - name: etcd
-        image: gcr.io/google_containers/etcd:2.0.9
+        image: gcr.io/google_containers/etcd-amd64:2.2.1
        resources:
+          # keep request = limit to keep this container in guaranteed class
          limits:
            cpu: 100m
            memory: 50Mi
+          requests:
+            cpu: 100m
+            memory: 50Mi
        command:
        - /usr/local/bin/etcd
        - -data-dir
@@ -40,25 +44,33 @@ spec:
        - name: etcd-storage
          mountPath: /var/etcd/data
      - name: kube2sky
-        image: gcr.io/google_containers/kube2sky:1.11
+        image: gcr.io/google_containers/kube2sky:1.12
        resources:
+          # keep request = limit to keep this container in guaranteed class
          limits:
            cpu: 100m
            memory: 50Mi
+          requests:
+            cpu: 100m
+            memory: 50Mi
        args:
        # command = "/kube2sky"
-        - -domain={{ pillar['dns_domain'] }}
-        - -kube_master_url=http://{kube_server_url}:8080
+        - --domain={{ pillar['dns_domain'] }}
      - name: skydns
-        image: gcr.io/google_containers/skydns:2015-03-11-001
+        image: gcr.io/google_containers/skydns:2015-10-13-8c72f8c
        resources:
+          # keep request = limit to keep this container in guaranteed class
          limits:
            cpu: 100m
            memory: 50Mi
+          requests:
+            cpu: 100m
+            memory: 50Mi
        args:
        # command = "/skydns"
-        - -machines=http://localhost:4001
+        - -machines=http://127.0.0.1:4001
        - -addr=0.0.0.0:53
+        - -ns-rotate=false
        - -domain={{ pillar['dns_domain'] }}.
        ports:
        - containerPort: 53
@@ -74,14 +86,25 @@ spec:
            scheme: HTTP
          initialDelaySeconds: 30
          timeoutSeconds: 5
+        readinessProbe:
+          httpGet:
+            path: /healthz
+            port: 8080
+            scheme: HTTP
+          initialDelaySeconds: 1
+          timeoutSeconds: 5
      - name: healthz
        image: gcr.io/google_containers/exechealthz:1.0
        resources:
+          # keep request = limit to keep this container in guaranteed class
          limits:
            cpu: 10m
            memory: 20Mi
+          requests:
+            cpu: 10m
+            memory: 20Mi
        args:
-        - -cmd=nslookup kubernetes.default.svc.{{ pillar['dns_domain'] }} localhost >/dev/null
+        - -cmd=nslookup kubernetes.default.svc.{{ pillar['dns_domain'] }} 127.0.0.1 >/dev/null
        - -port=8080
        ports:
        - containerPort: 8080
@@ -90,3 +113,24 @@ spec:
      - name: etcd-storage
        emptyDir: {}
      dnsPolicy: Default  # Don't use cluster DNS.
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: kube-dns
+  namespace: kube-system
+  labels:
+    k8s-app: kube-dns
+    kubernetes.io/cluster-service: "true"
+    kubernetes.io/name: "KubeDNS"
+spec:
+  selector:
+    k8s-app: kube-dns
+  clusterIP:  {{ pillar['dns_server'] }}
+  ports:
+  - name: dns
+    port: 53
+    protocol: UDP
+  - name: dns-tcp
+    port: 53
+    protocol: TCP