5b3e2a5db6
Reorganize server tasks, copy config to local
...
- Inital server starts first so it can grab the token for other servers and copy the config to localhost
- More cleanup of agent/server naming scheme
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-11-08 10:23:56 -08:00
df67c61ba5
Add HA option, change to yaml inventory, cleanup
...
- HA option for multiple server nodes using embedded etcd
- Switch to yaml inventory file for easier editing and combining vars
- Update to full ansible module names
- Change master/node names to server/agent
- Cleanup small linting errors
- Add reboot playbook which staggers reboot to keep HA cluster up
- Move playbooks to playbook directory
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-11-08 10:23:56 -08:00
1031ea3ce2
Comply with ansible-lint
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-11-07 14:00:07 -08:00
6749ca5874
use full path for k3s binary ( #143 )
...
Signed-off-by: Mark Hahl <mark@hahl.id.au>
2023-11-07 10:37:24 -08:00
12db5ef1f1
Fixes related to K3s Issue https://github.com/k3s-io/k3s/issues/4234 ( #204 )
...
Signed-off-by: Nikoleta Verbeck <nerdynick@gmail.comn>
Co-authored-by: Nikoleta Verbeck <nerdynick@gmail.comn>
2023-11-07 09:55:02 -08:00
8474a8b4e8
Update pre_req tasks ( #128 )
...
On Rhel 8.4 ansible_distribution is set to RedHat so the current when condition will fail
Added "RedHat" to the when condition.
Signed-off-by: Razurac <a.zelch@t-online.de>
2023-11-07 09:54:32 -08:00
b1c8c063f7
k3s download: increase `get_url` timeout 10→120s ( #213 )
...
The default `get_url` module timeout is 10s. As the k3s binary is around
60MB, it can take some time to download on slow connections or when many
downloads are concurrent (multi-node install).
Increase the timeout a bit from 10s to 120s.
Signed-off-by: Frank Villaro-Dixon <frank@villaro-dixon.eu>
2023-11-07 09:54:21 -08:00
b65b610023
Fix Raspberry tasks for Debian ( #151 )
...
* Fix Raspberry tasks for Debian
Signed-off-by: Rick <r.wagenaar@icloud.com>
Signed-off-by: Rick <rick@kcir.nl>
* Move debian yaml files
Signed-off-by: Rick <r.wagenaar@icloud.com>
Signed-off-by: Rick <rick@kcir.nl>
* Add task for Debian to install iptables
Signed-off-by: Rick <rick@kcir.nl>
* Add check for cmdline.txt path for Debian
Signed-off-by: Rick <rick@kcir.nl>
* Remove Debian11 tasks file
Signed-off-by: Rick <rick@kcir.nl>
---------
Signed-off-by: Rick <r.wagenaar@icloud.com>
Signed-off-by: Rick <rick@kcir.nl>
Co-authored-by: Rick <r.wagenaar@icloud.com>
Co-authored-by: Rick <rick@kcir.nl>
2023-11-07 09:53:59 -08:00
5f7bf0d388
Merge pull request #134 from clambin/ipv6
...
don't try to set ipv6 forward if ipv6 not enabled
2021-10-26 19:16:57 +02:00
402f83553e
don't try to set ipv6 forward if ipv6 not enabled
...
Signed-off-by: clambin <christophe.lambin@gmail.com>
2021-07-10 15:13:08 +02:00
98d388c9fa
support 'k3s server --data-dir' to put k3s server files in a non-standard location
...
Signed-off-by: clambin <christophe.lambin@gmail.com>
2021-07-10 15:10:53 +02:00
ef8d3a1949
Merge pull request #96 from tomasz-kuzemko/patch-1
...
Set service file mode -x
2021-02-23 16:30:42 +01:00
88e1a43543
Make sure the reset role can be run with --check
...
We need to compute what mountpoints would be unmounted even when running with
--check
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2021-02-19 00:19:50 +01:00
54629a46bd
Change reset deletion order to avoid racecondition
...
If the k3s binary is launched after the deletion of `/var/lib/rancher/k3s`, k3s
will automatically create this directory. This change deletes the k3s binary
first so that it cannot be called after `/var/lib/rancher/k3s` is deleted
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2021-02-19 00:12:51 +01:00
fe7bdf8cda
Reorganize the filesystem umount order.
...
* Clean /var/lib/kubelet before /var/lib/rancher/k3s.
* Umount the filesystem tree in reverse order, to ensure the root
is umounted last.
Signed-off-by: Staf Wagemakers <staf@wagemakers.be>
2021-01-24 11:04:30 +01:00
7e38173d31
Correct repo path in downloading URL
...
Fix #102 , use k3s-io/k3s instead of rancher/k3s
Signed-off-by: kopwei <kopkop@gmail.com>
2020-12-02 15:06:24 +00:00
29e6acb7e7
Set service file mode -x
...
Systemd service files should not be executable
2020-10-17 23:55:12 +02:00
721c348702
Merge pull request #79 from stafwag/master
...
Moved Raspberry Pi specifics settings to raspberrypi role
2020-09-27 18:59:18 +02:00
a066c77ab5
Merge pull request #80 from jeffspahr/master
...
Fix umount_with_children typo
2020-09-27 18:47:04 +02:00
ca7c25b81c
Fix linting errors
2020-09-22 21:08:35 +03:00
6873913124
Use checksum with get_url
...
When the checksum is used there is no need to delete the binary first,
as it will be compared to the checksum and downloaded and replaced only
as needed.
2020-09-20 21:19:44 +03:00
cf65304039
Fix umount_with_children typo
2020-08-16 21:26:25 -04:00
76e1c7838a
Rename umount_with_childeren.yml to umount_with_children.yml
2020-08-16 21:25:28 -04:00
f8aebf8ec6
trailing space removed
2020-08-16 21:55:34 +02:00
c657367755
lint errors corrected
2020-08-16 21:53:00 +02:00
d2b420588e
support for CentOS on the Raspberry Pi added
2020-08-16 20:38:12 +02:00
98473e2b09
only execute PI os specific settings on a PI
2020-08-16 12:52:25 +02:00
a5782b1d61
* updated description
...
* use handler for the reboot
* removed ARM cpu detection
2020-08-16 10:11:15 +02:00
53efb429e3
moved raspberry specific settings to raspberrypi role
2020-08-16 10:03:10 +02:00
05ade9a4bb
moved handler inside the role folder
2020-07-30 22:04:57 -02:30
022bf9440f
turned reboot into a handler
2020-07-30 13:33:53 -02:30
01de3488a2
Fixed Raspbian detection on 64-bit kernel, only reboot Raspbian if needed
2020-07-30 13:33:53 -02:30
9ff274481d
Merge pull request #54 from fnord123/issue40_cgroups_on_ubuntu_x86
...
Fix cgroups on ubuntu x86 (Issue 40)
2020-07-30 16:36:22 +02:00
ad3dc65cd9
Merge pull request #66 from stafwag/master
...
reset role updated to killall containerd daemons and umount k3s filesystems
2020-07-26 16:26:31 +02:00
7bab4cb165
removed typo ':'
2020-07-24 20:21:38 +02:00
e8b0b89d5d
use pkill on the full command line instead of killall
2020-07-24 20:15:48 +02:00
afc6c8add7
updated to verify the exit code of killall, only report a change if something is killed
2020-07-24 15:46:07 +02:00
637e49d75e
use lowercase for booleans
2020-07-24 14:16:10 +02:00
386a46d353
Merge pull request #42 from fnord123/master
...
Fix Raspbian role to run correctly on Python 3.x (e.g. Ubuntu 20.04) Ansible host
2020-07-24 11:27:58 +02:00
f83368d05b
Merge pull request #58 from guofengzh/master
...
Fixes : #56
2020-07-24 11:19:46 +02:00
9fbd0e6a76
Merge pull request #64 from b-m-f/patch-1
...
Fix typo in k3s main.yml
2020-07-24 10:45:13 +02:00
e2c4882dba
fixed ansible lint error: set -o pipefail added.
2020-07-22 20:48:40 +02:00
4058ee42e6
killall containerd-shim-runc-v2 added
...
umount k3s filesystems added
2020-07-22 18:43:06 +02:00
876b083ac9
Change extra_node_args to extra_agent_args
2020-07-21 16:50:46 +02:00
e6bee3e17f
Pass through extra arguments to the nodes with extra_node_args group variable
2020-07-21 14:12:20 +02:00
4e5fe89150
Update main.yml
...
Fixes small typo
2020-07-20 13:40:52 +02:00
1971b5741c
Fixes : #56
2020-07-14 23:14:20 +08:00
a9294b1d43
Skip ARM specific tasks on Ubuntu to fix issue 40
2020-06-20 17:10:42 -07:00
a850b4a89a
Fix Raspbian rol eto run correctly on Ubuntu Ansible host
2020-06-06 09:13:54 -07:00
952768e26e
Simplify Ubuntu to reboot no matter what
2020-05-31 10:24:12 -07:00
a9affdf9e6
Remove file created for Timezone feature addition
2020-05-31 10:21:00 -07:00
6075693481
Remove timezone changes to focus branch on just ubuntu
2020-05-31 10:16:09 -07:00
92b235c8d5
Merge branch 'master' of https://github.com/fnord123/k3s-ansible
2020-05-31 09:11:20 -07:00
26a6c52add
Fixed conflicts between upstream and master.
2020-05-31 09:10:38 -07:00
afbe4aceb6
Add missing newline at eof
2020-05-30 12:07:35 -07:00
3911f28d2a
Fix image downloading for Raspbian64
2020-05-30 09:54:34 -07:00
6534ecaa83
Fix to make work on Raspbian64
2020-05-30 08:37:12 -07:00
338d5eb654
Finally installed ansible-lint and fixed all lint errors.
2020-05-23 15:40:59 -07:00
9422f65b5b
Make cgroup enabling idempotent and fix ansible lint checks.
2020-05-23 09:31:40 -07:00
58d847a78e
More yamllint cleanup
2020-05-22 11:40:26 -07:00
331c118049
Lint cleanup timezone setting support.
2020-05-22 11:36:19 -07:00
930f1b5586
Clean up conditionals a bit
2020-05-22 11:11:00 -07:00
61c0e513fc
Merge remote-tracking branch 'upstream/master'
2020-05-22 09:07:30 -07:00
9ad3dd93e4
Add support for ubuntu
2020-05-22 09:01:03 -07:00
5d92b0ac41
make sure its Raspbian Buster
2020-05-19 17:15:40 +02:00
02e9b3607d
change to native ansible iptables flush
2020-05-19 09:36:53 +02:00
bdd2d21dfc
fix ansible-lint error
2020-05-19 09:22:51 +02:00
9452fd4b09
iptables-legacy for Raspian Buster
2020-05-19 09:13:29 +02:00
ba1b9ae3f1
Fixes #26 : Ignore failure in service task in reset playbook so it can run.
2020-05-18 08:35:43 -05:00
caf35f2ba8
Merge pull request #18 from geerlingguy/17-fix-changed-check
...
Fixes #17 : Fix is changed check so reboot task doesn't fail.
2020-05-18 10:31:30 +02:00
70888c8b74
Fixes #22 : Set proper file mode using an octal.
2020-05-16 22:27:08 -05:00
5e51cf0365
Fixes #17 : Fix is changed check so reboot task doesn't fail.
2020-05-14 21:42:01 -05:00
12aad6598a
Add /usr/local/bin to secure_path, Add br_netfilter on centos
...
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2020-05-13 16:20:54 +02:00
1af4255e8f
Merge pull request #1 from St0rmingBr4in/fix-centos-1
...
Fix systemd TimeoutStartSec
2020-05-13 09:46:29 +02:00
e47af78bfd
Fixes #3 : Fix linting issues, add ansible-lint and yamllint configuration.
2020-05-12 16:00:32 -05:00
3bee6136fc
Merge pull request #8 from geerlingguy/5-reboot-module
...
Fixes #5 : Use Ansible's reboot module instead of reboot command.
2020-05-12 22:53:41 +02:00
de1e73843a
Fixes #9 : Make sure both iptables and ip6tables are configured correctly.
2020-05-12 15:25:01 -05:00
51407213ef
Fixes #5 : Use Ansible's reboot module instead of reboot command.
2020-05-12 15:22:32 -05:00
71dd910ec1
Fix systemd TimeoutStartSec
...
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2020-05-12 17:20:53 +02:00
62914a0cfc
Merge pull request #1735 from stellirin/performance
...
[systemd] Add value to LimitNOFILE due to performance problems
2020-05-06 16:37:37 -07:00
df10b51c91
[systemd] Add value to LimitNOFILE due to performance problems
...
When k3s is installed on an OS with default high ulimits, performance
issues can be observed. This was discovered on CoreOS where the default
value is 1073741816. Symptoms include very slow file operations such
as installing a Rook/Ceph cluster will take ~6 hours instead of ~10 minutes.
A google search for 'container LimitNOFILE' will show that most major
projects set this already, including the (unused) containerd systemd unit
found in this repository at /vendor/github.com/containerd/containerd/containerd.service
k3OS is not affected becuasse the default there is already 1048576.
See description in coreos/fedora-coreos-tracker#329
2020-05-03 09:37:00 +02:00
33686cadae
Fixes #1729 : Use 'is changed' instead of non-existent changed filter.
2020-05-01 22:42:42 -05:00
62a50429ca
contrib/ansible: Add reset role and playbook to reset a node ( #1565 )
...
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2020-03-25 12:36:28 -07:00
b1d3202461
Add ExecStartPre to ansible systemd node unit files
2020-03-01 19:32:19 +05:30
242cfa424c
Add Type and TimeoutStartSec to ansible systemd unit files
2020-03-01 19:31:31 +05:30
3d738d887a
Merge pull request #1430 from St0rmingBr4in/fix-home
...
contrib/ansible: Fix home path and use kubectl to set the server url in conf
2020-02-24 15:24:33 -07:00
d63ae87e02
contrib/ansible: Add extra_server_args variable
...
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2020-02-17 21:42:40 +01:00
7f68b7f3cd
contrib/ansible: Use kubectl to set the server url in conf
...
Sometimes https://127.0.0.1:6443 can be written in the conf, the regexp does
not account for that.
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2020-02-17 20:55:44 +01:00
ca9702f65b
contrib/ansible: Fix home is not necessarily in /home
...
Signed-off-by: Julien DOCHE <julien.doche@gmail.com>
2020-02-17 20:49:01 +01:00
ed56b606b8
Fix indentation
2019-10-27 23:34:34 -04:00
2b10d43fa1
CentOS/RHEL compatibility for Ansible roles
...
- Setting IPv4 & IPv6 forwarding
- Setting `sysctl:net.bridge.bridge-nf-call-iptables` and `bridge-nf-call-ip6tables` to enabled since it is disabled by default on some CentOS systems
2019-09-29 00:19:18 +02:00
01080c2c36
Add RestartSec to ansible systemd unit files
2019-07-26 13:05:54 -05:00
b07143780b
Createsymlinks for kubectl and crictl
2019-07-13 21:10:33 +02:00
4c48500e18
Add wait for node-token file
2019-07-07 17:24:37 +02:00
023bd5693d
Merge pull request #513 from tamsky/ansible/improve-raspbian-checks
...
Ansible: Test for Raspbian before assuming
2019-06-18 10:58:46 -07:00
93ff44356b
Merge pull request #514 from tamsky/ansible/support-master+node
...
contrib/ansible: Allow 'server' and 'node' roles to co-exist on a single host
2019-06-18 10:58:21 -07:00
eb664acb6a
contrib/ansible: Fixes usage of 'search' in when statements
2019-05-30 02:05:35 -07:00
3341d967be
contrib/ansible: Allow master and node roles to co-exist
2019-05-30 01:33:41 -07:00
1a466f92de
Test for Raspbian before assuming
2019-05-30 01:30:31 -07:00
f2bb86e593
Merge pull request #487 from itwars/master
...
Ansible - fix typo and add kubeconfig copy to user homedir
2019-05-28 17:28:03 -07:00
Nicholas Malcolm
Derek Nola
Mark Hahl
Nikoleta Verbeck
Razurac
Frank Villaro-Dixon
kcir
Julien DOCHE
clambin
Staf Wagemakers
kopwei
Tomasz Kuzemko
Lennart Jern
jeffspahr
John
b-m-f
Maximilian Ehlers
guofeng zhang
David Putzolu
Markus Fischbacher
Jeff Geerling
Vincent RABAH
Craig Jellick
Adam Farden
Arpan Kapoor
Erik Wilson
James Harrington
Matthias Riegler
Chris Jowett
Pieter van der Merwe
Marc Tamsky