CadolesKube/os
7
0
Fork 0
Code Issues 2 Pull Requests Projects Releases Wiki Activity

Compare commits

base: CadolesKube:feat/flatcar
Branches Tags
CadolesKube:develop CadolesKube:feat/flatcar CadolesKube:isobuilder
..
compare: CadolesKube:isobuilder
Branches Tags
CadolesKube:feat/flatcar CadolesKube:isobuilder CadolesKube:develop

4 Commits
feat/flatc ... isobuilder

Author SHA1 Message Date
Philippe Caseiro
dcd308056b Fix alpine version to 3.16 2022-11-23 16:40:11 +01:00
Philippe Caseiro
6da1ebf2ef feat(docker): moving builder to docker 2022-11-08 16:42:52 +01:00
vfebvre
91012c2f58 Update 'README.md' 
Layout
 2022-10-19 11:55:03 +02:00
vfebvre
10e3f00059 First commit : Add first scripts to build an ISO 2022-10-19 11:48:25 +02:00
23 changed files with 250 additions and 813 deletions
Expand all files Collapse all files

33
Dockerfile Normal file
View File

@ -0,0 +1,33 @@
FROM reg.cadoles.com/proxy_cache/library/alpine:latest
# Packages needed
RUN apk update
RUN apk add alpine-sdk build-base mtools dosfstools grub-efi apk-tools alpine-conf busybox fakeroot syslinux xorriso squashfs-tools sudo
# User setup
RUN adduser build -G abuild -D
RUN chown build:abuild /home/build -R
# Grant unrestricted sudo to abuild group
RUN echo "%abuild ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/abuild
USER build
WORKDIR /home/build
RUN abuild-keygen -n -i -a
RUN git clone --depth=1 https://gitlab.alpinelinux.org/alpine/aports.git
USER root
RUN apk update
COPY ./scripts/create-iso.sh /usr/bin/create-iso.sh
RUN chmod +x /usr/bin/create-iso.sh
COPY ./scripts/aports/* /home/build/aports/scripts/
RUN chmod +x /home/build/aports/scripts/*.sh
USER build
WORKDIR /home/build
CMD [ "/usr/bin/create-iso.sh", "ckubeos", "3.16"]

9
Makefile
View File

@ -1,9 +0,0 @@
SHELL := /bin/bash
apk:
nfpm package -p apk
deb:
nfpm package -p deb
rpm:
nfpm package -p rpm

36
README.md
View File

@ -1,5 +1,35 @@
# os
Cadoles Kubernetes Operating System
a.k.a. CadolesKube/os
Cadoles Kubernetes Operating System
a.k.a. CadolesKube/os
##Creating a build server for AlpineLinux
On Alpine server run : at-begining.sh to install necessary tools.
##Change to the build user :
```su - build```
##Create signing key:
```abuild-keygen -i -a (-i installs them in /etc/apk/keys)```
##Quick check :
```ls -lah /etc/apk/keys/build-xxxxxxxx.rsa.pub```
##Clone the git repository :
```git clone --depth=1 https://gitlab.alpinelinux.org/alpine/aports.git```
##Update :
```sudo apk updat```
Copy script 'create-iso.sh' in '/home/build'
You must enter a profile name to launch the creation of the iso. The iso is built with Edge sources to have Kubernetes tools.
For example ./create-iso.sh myKube.
The iso is generated in the ~/iso folder.

24
at-begining.sh Normal file
View File

@ -0,0 +1,24 @@
#!/bin/sh
# Install base builder
if test $(id -u) -ne 0; then
echo "Be root is better for this action !!"
exit 1
fi
if test ! -f /etc/apk/world; then
echo "Maybe, You should try on an Alpine !"
exit 1
fi
# Packages needed
apk add alpine-sdk build-base apk-tools alpine-conf busybox fakeroot syslinux xorriso squashfs-tools sudo
# User setup
adduser build -G abuild
# Grant unrestricted sudo to abuild group
echo "%abuild ALL=(ALL) ALL" > /etc/sudoers.d/abuild
# Also, update apk
apk update

5
butane/ckube-install
View File

@ -1,5 +0,0 @@
#!/bin/sh
target=$(xargs -n1 -a /proc/cmdline | awk -F '=' '/^flatcar.target=.*/ {print $NF}')
flatcar-install -d ${target} -i /opt/ignition.json && udevadm settle && systemctl reboot

36
butane/k8s-leader-install.yaml
View File

@ -1,36 +0,0 @@
variant: flatcar
version: 1.0.0
passwd:
users:
- name: cadoles
password_hash: "$y$j9T$7dNoyJBSiQ5dJ6.kLs17I0$G9VVQkBUddW2E6TVQchecSE94jNxLz4F3wguz5QkvD8"
groups:
- wheel
- sudo
ssh_authorized_keys:
- "ssh-rsa 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 Philippe Caseiro"
systemd:
units:
- name: installer.service
enabled: true
contents: |
[Unit]
Requires=network-online.target
After=network-online.target
[Service]
Type=forking
TimeoutStartSec=600
RemainAfterExit=yes
ExecStart=/usr/bin/sh -c "/opt/ckube-install"
[Install]
WantedBy=multi-user.target
storage:
files:
- path: /opt/ignition.json
mode: 0700
contents:
source: http://192.168.40.3/leader.json
- path: /opt/ckube-install
mode: 0700
contents:
source: http://192.168.40.3/ckube-install

209
butane/k8s-leader.yaml
View File

@ -1,209 +0,0 @@
variant: flatcar
version: 1.0.0
passwd:
users:
- name: cadoles
password_hash: "$y$j9T$7dNoyJBSiQ5dJ6.kLs17I0$G9VVQkBUddW2E6TVQchecSE94jNxLz4F3wguz5QkvD8"
groups:
- wheel
- sudo
ssh_authorized_keys:
- "ssh-rsa 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 Philippe Caseiro"
systemd:
units:
- name: install-cni.service
enabled: true
contents: |
[Unit]
Description=Install CNI plugins K8S
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/cni/bin/firewall
[Service]
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="CNI_VERSION=v0.8.2"
Environment="ARCH=amd64"
Environment="URL=https://github.com/containernetworking/plugins/releases/download/${CNI_VERSION}/cni-plugins-linux-${ARCH}-${CNI_VERSION}.tgz"
ExecStartPre=/bin/mkdir -p /opt/cni/bin
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C /opt/cni/bin -xz"
[Install]
WantedBy=multi-user.target
- name: install-crictl.service
enabled: true
contents: |
[Unit]
Description=Install crictl
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/crictl
[Service]
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="CRICTL_VERSION=v1.22.0"
Environment="ARCH=amd64"
Environment="URL=https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz"
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C $DOWNLOAD_DIR -xz"
[Install]
WantedBy=multi-user.target
- name: install-kubernetes.service
enabled: true
contents: |
[Unit]
Description=Install K8S
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/kubelet
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="KUBE_RELEASE=v1.25.4"
Environment="ARCH=amd64"
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="URL=https://storage.googleapis.com/kubernetes-release/release/${KUBE_RELEASE}/bin/linux/${ARCH}"
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L --remote-name-all ${URL}/{kubeadm,kubelet,kubectl}"
ExecStartPost=/bin/sh -c "/bin/chmod +x ${DOWNLOAD_DIR}/{kubeadm,kubelet,kubectl}"
[Install]
WantedBy=multi-user.target
- name: install-cilium.service
enabled: false
contents: |
[Unit]
Description=Install Cilium client
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/cilium
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="CILIUM_RELEASE=v0.12.8"
Environment="ARCH=amd64"
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="URL=https://github.com/cilium/cilium-cli/releases/download/${CILIUM_RELEASE}/cilium-linux-${ARCH}.tar.gz
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C ${DOWNLOAD_DIR} -xz"
[Install]
WantedBy=multi-user.target
- name: kubelet.service
enabled: true
contents: |
[Unit]
Description=The Kubernetes Node Agent
Documentation=https://kubernetes.io/docs/home/
Wants=network-online.target
After=network-online.target
[Service]
ExecStart=/opt/bin/kubelet
Restart=always
StartLimitInterval=0
RestartSec=10
[Install]
WantedBy=multi-user.target
dropins:
- name: 10-kubeadm.conf
contents: |
[Service]
Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf --kubeconfig=/etc/kubernetes/kubelet.conf"
Environment="KUBELET_CONFIG_ARGS=--config=/var/lib/kubelet/config.yaml"
EnvironmentFile=-/var/lib/kubelet/kubeadm-flags.env
EnvironmentFile=-/etc/default/kubelet
ExecStart=
ExecStart=/opt/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELET_KUBEADM_ARGS $KUBELET_EXTRA_ARGS
- name: init-cluster.service
enabled: true
contents: |
[Unit]
Description=Kubernetes cluster init
Documentation=https://kubernetes.io/docs/home/
Wants=network-online.target
After=network-online.target install-kubernetes.service
ConditionPathExists=!/opt/libexec/kubernetes/kubelet-plugins/volume/exec/
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=360
RemainAfterExit=yes
KillMode=process
Environment="caSecretKey=$(date | sha256sum | awk \'{print $1}`')"
Environment="SET_HOSTNAME=leader.ks.cadoles.com"
Environment="PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/opt/bin"
Environment="KUBECONFIG=/etc/kubernetes/admin.conf"
ExecStartPre=/bin/sh -c "/usr/bin/hostnamectl hostname ${SET_HOSTNAME}"
ExecStart=/opt/bin/kubeadm init --config /root/kubeadm-config.yaml --upload-certs
ExecStartPost=/bin/sh -c "/bin/mkdir -p /home/cadoles/.kube"
ExecStartPost=/bin/sh -c "/bin/cp -i /etc/kubernetes/admin.conf /home/cadoles/.kube/config"
ExecStartPost=/bin/sh -c "/bin/chown cadoles:cadoles /home/cadoles/.kube/config"
[Install]
WantedBy=multi-user.target
- name: install-network-cni.service
enabled: true
contents: |
[Unit]
Description=Install network CNI (calico)
Documentation=https://kubernetes.io/docs/home/
Wants=network-online.target
After=network-online.target init-cluster.service
ConditionPathExists=!/opt/cni/bin/calico
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=360
RemainAfterExit=yes
KillMode=process
Environment="KUBECONFIG=/etc/kubernetes/admin.conf"
Environment="CIDR=10.244.0.0/16"
Environment="URL=https://raw.githubusercontent.com/projectcalico/calico/v3.24.5/manifests/calico.yaml"
ExecStart=/opt/bin/kubectl apply -f ${URL}
[Install]
WantedBy=multi-user.target
storage:
files:
- path: /etc/sysctl.d/k8s.conf
mode: 0600
contents:
inline: |
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1
- path: /root/kubeadm-config.yaml
mode: 0644
contents:
inline: |
apiVersion: kubeadm.k8s.io/v1beta3
kind: InitConfiguration
certificateKey: b4edd5fb7aec1b90e06c68e090213621f621e31353a165dabeed0f8617c341b6
nodeRegistration:
name: leader.ks.cadoles.com
kubeletExtraArgs:
volume-plugin-dir: "/opt/libexec/kubernetes/kubelet-plugins/volume/exec/"
---
apiVersion: kubeadm.k8s.io/v1beta3
kind: ClusterConfiguration
networking:
podSubnet: 10.244.0.0/16
controllerManager:
extraArgs:
flex-volume-plugin-dir: "/opt/libexec/kubernetes/kubelet-plugins/volume/exec/"
---
apiVersion: kubeproxy.config.k8s.io/v1alpha1
kind: KubeProxyConfiguration
mode: "ipvs"
ipvs:
strictARP: true
---
kind: KubeletConfiguration
apiVersion: kubelet.config.k8s.io/v1beta1
cgroupDriver: systemd

114
butane/k8s-worker.yaml
View File

@ -1,114 +0,0 @@
variant: flatcar
version: 1.0.0
passwd:
users:
- name: cadoles
password_hash: "$y$j9T$7dNoyJBSiQ5dJ6.kLs17I0$G9VVQkBUddW2E6TVQchecSE94jNxLz4F3wguz5QkvD8"
groups:
- wheel
- sudo
ssh_authorized_keys:
- "ssh-rsa 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 Philippe Caseiro"
systemd:
units:
- name: install-cni.service
enabled: true
contents: |
[Unit]
Description=Install CNI plugins K8S
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/cni/bin/firewall
[Service]
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="CNI_VERSION=v0.8.2"
Environment="ARCH=amd64"
Environment="URL=https://github.com/containernetworking/plugins/releases/download/${CNI_VERSION}/cni-plugins-linux-${ARCH}-${CNI_VERSION}.tgz"
ExecStartPre=/bin/mkdir -p /opt/cni/bin
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C /opt/cni/bin -xz"
[Install]
WantedBy=multi-user.target
- name: install-crictl.service
enabled: true
contents: |
[Unit]
Description=Install crictl
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/crictl
[Service]
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="CRICTL_VERSION=v1.22.0"
Environment="ARCH=amd64"
Environment="URL=https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz"
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C $DOWNLOAD_DIR -xz"
[Install]
WantedBy=multi-user.target
- name: install-kubernetes.service
enabled: true
contents: |
[Unit]
Description=Install K8S
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/kubelet
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="KUBE_RELEASE=v1.25.4"
Environment="ARCH=amd64"
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="URL=https://storage.googleapis.com/kubernetes-release/release/${KUBE_RELEASE}/bin/linux/${ARCH}"
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L --remote-name-all ${URL}/{kubeadm,kubelet,kubectl}"
ExecStartPost=/bin/sh -c "/bin/chmod +x ${DOWNLOAD_DIR}/{kubeadm,kubelet,kubectl}"
[Install]
WantedBy=multi-user.target
- name: kubelet.service
enabled: true
contents: |
[Unit]
Description=The Kubernetes Node Agent
Documentation=https://kubernetes.io/docs/home/
Wants=network-online.target
After=network-online.target
[Service]
ExecStart=/opt/bin/kubelet
Restart=always
StartLimitInterval=0
RestartSec=10
[Install]
WantedBy=multi-user.target
dropins:
- name: 10-kubeadm.conf
contents: |
[Service]
Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf --kubeconfig=/etc/kubernetes/kubelet.conf"
Environment="KUBELET_CONFIG_ARGS=--config=/var/lib/kubelet/config.yaml"
EnvironmentFile=-/var/lib/kubelet/kubeadm-flags.env
EnvironmentFile=-/etc/default/kubelet
ExecStart=
ExecStart=/opt/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELET_KUBEADM_ARGS $KUBELET_EXTRA_ARGS
storage:
files:
- path: /etc/hostname
mode: 0640
contents:
inline: worker.ks.cadoles.com
- path: /etc/sysctl.d/k8s.conf
mode: 0600
contents:
inline: |
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1

40
butane/k8s.hcl
View File

@ -1,40 +0,0 @@
KubeCluster = {
Domain = "ks.cadoles.com"
PodCIDR = "10.244.0.0/16"
Users = [
{
Name = "cadoles"
PassHash = "$y$j9T$7dNoyJBSiQ5dJ6.kLs17I0$G9VVQkBUddW2E6TVQchecSE94jNxLz4F3wguz5QkvD8"
Groups = [
"wheel"
"sudo"
]
}
]
SSHAuthorizedKeys = [
"ssh-rsa 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 Philippe Caseiro"
]
Nodes = [
{
Name = "master0"
Role = "leader"
IP = "192.168.10.240/24"
Gateway = "192.168.10.254"
DNS = "192.168.5.53"
}
{
Name = "worker1"
Role = "worker"
IP = "192.168.10.241/24"
Gateway = "192.168.10.254"
DNS = "192.168.5.53"
}
{
Name = "worker2"
Role = "worker"
IP = "192.168.10.242/24"
Gateway = "192.168.10.254"
DNS = "192.168.5.53"
}
]
}

1
butane/k8s.json
View File

File diff suppressed because one or more lines are too long

203
butane/k8s.yaml.hcl
View File

@ -1,203 +0,0 @@
variant: flatcar
version: 1.0.0
passwd:
users:
- name: cadoles
password_hash: "$y$j9T$7dNoyJBSiQ5dJ6.kLs17I0$G9VVQkBUddW2E6TVQchecSE94jNxLz4F3wguz5QkvD8"
groups:
- wheel
- sudo
ssh_authorized_keys:
- "ssh-rsa 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 Philippe Caseiro"
systemd:
units:
- name: install-cni.service
enabled: true
contents: |
[Unit]
Description=Install CNI plugins K8S
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/cni/bin/firewall
[Service]
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="CNI_VERSION=v0.8.2"
Environment="ARCH=amd64"
Environment="URL=https://github.com/containernetworking/plugins/releases/download/${CNI_VERSION}/cni-plugins-linux-${ARCH}-${CNI_VERSION}.tgz"
ExecStartPre=/bin/mkdir -p /opt/cni/bin
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C /opt/cni/bin -xz"
[Install]
WantedBy=multi-user.target
- name: install-crictl.service
enabled: true
contents: |
[Unit]
Description=Install crictl
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/crictl
[Service]
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="CRICTL_VERSION=v1.22.0"
Environment="ARCH=amd64"
Environment="URL=https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz"
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C $DOWNLOAD_DIR -xz"
[Install]
WantedBy=multi-user.target
- name: install-kubernetes.service
enabled: true
contents: |
[Unit]
Description=Install K8S
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/kubelet
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="KUBE_RELEASE=v1.25.4"
Environment="ARCH=amd64"
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="URL=https://storage.googleapis.com/kubernetes-release/release/${KUBE_RELEASE}/bin/linux/${ARCH}"
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L --remote-name-all ${URL}/{kubeadm,kubelet,kubectl}"
ExecStartPost=/bin/sh -c "/bin/chmod +x ${DOWNLOAD_DIR}/{kubeadm,kubelet,kubectl}"
[Install]
WantedBy=multi-user.target
- name: install-cilium.service
enabled: false
contents: |
[Unit]
Description=Install Cilium client
Wants = network-online.target
After = network.target network-online.target
ConditionPathExists=!/opt/bin/cilium
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=180
RemainAfterExit=yes
KillMode=process
Environment="CILIUM_RELEASE=v0.12.8"
Environment="ARCH=amd64"
Environment="DOWNLOAD_DIR=/opt/bin"
Environment="URL=https://github.com/cilium/cilium-cli/releases/download/${CILIUM_RELEASE}/cilium-linux-${ARCH}.tar.gz
ExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}
ExecStart=/bin/sh -c "/usr/bin/curl -L ${URL} | /usr/bin/tar -C ${DOWNLOAD_DIR} -xz"
[Install]
WantedBy=multi-user.target
- name: kubelet.service
enabled: true
contents: |
[Unit]
Description=The Kubernetes Node Agent
Documentation=https://kubernetes.io/docs/home/
Wants=network-online.target
After=network-online.target
[Service]
ExecStart=/opt/bin/kubelet
Restart=always
StartLimitInterval=0
RestartSec=10
[Install]
WantedBy=multi-user.target
dropins:
- name: 10-kubeadm.conf
contents: |
[Service]
Environment="KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf --kubeconfig=/etc/kubernetes/kubelet.conf"
Environment="KUBELET_CONFIG_ARGS=--config=/var/lib/kubelet/config.yaml"
EnvironmentFile=-/var/lib/kubelet/kubeadm-flags.env
EnvironmentFile=-/etc/default/kubelet
ExecStart=
ExecStart=/opt/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELET_KUBEADM_ARGS $KUBELET_EXTRA_ARGS
- name: init-cluster.service
enabled: true
contents: |
[Unit]
Description=Kubernetes cluster init
Documentation=https://kubernetes.io/docs/home/
Wants=network-online.target
After=network-online.target install-kubernetes.service
ConditionPathExists=!/opt/libexec/kubernetes/kubelet-plugins/volume/exec/
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=360
RemainAfterExit=yes
KillMode=process
Environment="caSecretKey=$(date | sha256sum | awk \'{print $1}`')"
Environment="SET_HOSTNAME=leader.ks.cadoles.com"
Environment="PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/opt/bin"
Environment="KUBECONFIG=/etc/kubernetes/admin.conf"
ExecStartPre=/bin/sh -c "/usr/bin/hostnamectl hostname ${SET_HOSTNAME}"
ExecStart=/opt/bin/kubeadm init --config /root/kubeadm-config.yaml --upload-certs
ExecStartPost=/bin/sh -c "/bin/mkdir -p /home/cadoles/.kube"
ExecStartPost=/bin/sh -c "/bin/cp -i /etc/kubernetes/admin.conf /home/cadoles/.kube/config"
ExecStartPost=/bin/sh -c "/bin/chown cadoles:cadoles /home/cadoles/.kube/config"
[Install]
WantedBy=multi-user.target
- name: install-network-cni.service
enabled: true
contents: |
[Unit]
Description=Install network CNI (calico)
Documentation=https://kubernetes.io/docs/home/
Wants=network-online.target
After=network-online.target init-cluster.service
ConditionPathExists=!/opt/cni/bin/calico
[Service]
WorkingDirectory=/opt/bin
Type=forking
TimeoutStartSec=360
RemainAfterExit=yes
KillMode=process
Environment="KUBECONFIG=/etc/kubernetes/admin.conf"
Environment="CIDR=10.244.0.0/16"
Environment="URL=https://raw.githubusercontent.com/projectcalico/calico/v3.24.5/manifests/calico.yaml"
ExecStart=/opt/bin/kubectl apply -f ${URL}
[Install]
WantedBy=multi-user.target
storage:
files:
- path: /etc/sysctl.d/k8s.conf
mode: 0600
contents:
inline: |
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1
- path: /root/kubeadm-config.yaml
mode: 0644
contents:
inline: |
apiVersion: kubeadm.k8s.io/v1beta3
kind: InitConfiguration
certificateKey: b4edd5fb7aec1b90e06c68e090213621f621e31353a165dabeed0f8617c341b6
nodeRegistration:
name: leader.ks.cadoles.com
kubeletExtraArgs:
volume-plugin-dir: "/opt/libexec/kubernetes/kubelet-plugins/volume/exec/"
---
apiVersion: kubeadm.k8s.io/v1beta3
kind: ClusterConfiguration
networking:
podSubnet: 10.244.0.0/16
controllerManager:
extraArgs:
flex-volume-plugin-dir: "/opt/libexec/kubernetes/kubelet-plugins/volume/exec/"
---
kind: KubeletConfiguration
apiVersion: kubelet.config.k8s.io/v1beta1
cgroupDriver: systemd

47
butane/leader-install.json
View File

@ -1,47 +0,0 @@
{
"ignition": {
"version": "3.3.0"
},
"passwd": {
"users": [
{
"groups": [
"wheel",
"sudo"
],
"name": "cadoles",
"passwordHash": "$y$j9T$7dNoyJBSiQ5dJ6.kLs17I0$G9VVQkBUddW2E6TVQchecSE94jNxLz4F3wguz5QkvD8",
"sshAuthorizedKeys": [
"ssh-rsa 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 Philippe Caseiro"
]
}
]
},
"storage": {
"files": [
{
"path": "/opt/ignition.json",
"contents": {
"source": "http://192.168.40.3/leader.json"
},
"mode": 448
},
{
"path": "/opt/ckube-install",
"contents": {
"source": "http://192.168.40.3/ckube-install"
},
"mode": 448
}
]
},
"systemd": {
"units": [
{
"contents": "[Unit]\nRequires=network-online.target\nAfter=network-online.target\n[Service]\nType=forking\nTimeoutStartSec=600\nRemainAfterExit=yes\nExecStart=/usr/bin/sh -c \"/opt/ckube-install\"\n[Install]\nWantedBy=multi-user.target\n",
"enabled": true,
"name": "installer.service"
}
]
}
}

1
butane/leader.json
View File

File diff suppressed because one or more lines are too long

1
butane/worker.json
View File

@ -1 +0,0 @@
{"ignition":{"version":"3.3.0"},"passwd":{"users":[{"groups":["wheel","sudo"],"name":"cadoles","passwordHash":"$y$j9T$7dNoyJBSiQ5dJ6.kLs17I0$G9VVQkBUddW2E6TVQchecSE94jNxLz4F3wguz5QkvD8","sshAuthorizedKeys":["ssh-rsa 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 Philippe Caseiro"]}]},"storage":{"files":[{"path":"/etc/hostname","contents":{"compression":"","source":"data:,worker.ks.cadoles.com"},"mode":416},{"path":"/etc/sysctl.d/k8s.conf","contents":{"compression":"","source":"data:,net.bridge.bridge-nf-call-ip6tables%20%3D%201%0Anet.bridge.bridge-nf-call-iptables%20%3D%201"},"mode":384}]},"systemd":{"units":[{"contents":"[Unit]\nDescription=Install CNI plugins K8S\nWants = network-online.target\nAfter = network.target network-online.target\nConditionPathExists=!/opt/cni/bin/firewall\n[Service]\nType=forking\nTimeoutStartSec=180\nRemainAfterExit=yes\nKillMode=process\nEnvironment=\"CNI_VERSION=v0.8.2\"\nEnvironment=\"ARCH=amd64\"\nEnvironment=\"URL=https://github.com/containernetworking/plugins/releases/download/${CNI_VERSION}/cni-plugins-linux-${ARCH}-${CNI_VERSION}.tgz\"\nExecStartPre=/bin/mkdir -p /opt/cni/bin\nExecStart=/bin/sh -c \"/usr/bin/curl -L ${URL} | /usr/bin/tar -C /opt/cni/bin -xz\"\n[Install]\nWantedBy=multi-user.target\n","enabled":true,"name":"install-cni.service"},{"contents":"[Unit]\nDescription=Install crictl\nWants = network-online.target\nAfter = network.target network-online.target\nConditionPathExists=!/opt/bin/crictl\n[Service]\nType=forking\nTimeoutStartSec=180\nRemainAfterExit=yes\nKillMode=process\nEnvironment=\"DOWNLOAD_DIR=/opt/bin\"\nEnvironment=\"CRICTL_VERSION=v1.22.0\"\nEnvironment=\"ARCH=amd64\"\nEnvironment=\"URL=https://github.com/kubernetes-sigs/cri-tools/releases/download/${CRICTL_VERSION}/crictl-${CRICTL_VERSION}-linux-${ARCH}.tar.gz\"\nExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}\nExecStart=/bin/sh -c \"/usr/bin/curl -L ${URL} | /usr/bin/tar -C $DOWNLOAD_DIR -xz\"\n[Install]\nWantedBy=multi-user.target\n","enabled":true,"name":"install-crictl.service"},{"contents":"[Unit]\nDescription=Install K8S\nWants = network-online.target\nAfter = network.target network-online.target\nConditionPathExists=!/opt/bin/kubelet\n[Service]\nWorkingDirectory=/opt/bin\nType=forking\nTimeoutStartSec=180\nRemainAfterExit=yes\nKillMode=process\nEnvironment=\"KUBE_RELEASE=v1.25.4\"\nEnvironment=\"ARCH=amd64\"\nEnvironment=\"DOWNLOAD_DIR=/opt/bin\"\nEnvironment=\"URL=https://storage.googleapis.com/kubernetes-release/release/${KUBE_RELEASE}/bin/linux/${ARCH}\"\nExecStartPre=/bin/mkdir -p ${DOWNLOAD_DIR}\nExecStart=/bin/sh -c \"/usr/bin/curl -L --remote-name-all ${URL}/{kubeadm,kubelet,kubectl}\"\nExecStartPost=/bin/sh -c \"/bin/chmod +x ${DOWNLOAD_DIR}/{kubeadm,kubelet,kubectl}\"\n[Install]\nWantedBy=multi-user.target\n","enabled":true,"name":"install-kubernetes.service"},{"contents":"[Unit]\nDescription=The Kubernetes Node Agent\nDocumentation=https://kubernetes.io/docs/home/\nWants=network-online.target\nAfter=network-online.target\n[Service]\nExecStart=/opt/bin/kubelet\nRestart=always\nStartLimitInterval=0\nRestartSec=10\n[Install]\nWantedBy=multi-user.target\n","dropins":[{"contents":"[Service]\nEnvironment=\"KUBELET_KUBECONFIG_ARGS=--bootstrap-kubeconfig=/etc/kubernetes/bootstrap-kubelet.conf --kubeconfig=/etc/kubernetes/kubelet.conf\"\nEnvironment=\"KUBELET_CONFIG_ARGS=--config=/var/lib/kubelet/config.yaml\"\nEnvironmentFile=-/var/lib/kubelet/kubeadm-flags.env\nEnvironmentFile=-/etc/default/kubelet\nExecStart=\nExecStart=/opt/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_CONFIG_ARGS $KUBELET_KUBEADM_ARGS $KUBELET_EXTRA_ARGS\n","name":"10-kubeadm.conf"}],"enabled":true,"name":"kubelet.service"}]}}

0
config/apk/world Normal file
View File

21
ipxe/etc/dnsmasq.d/pxe.conf
View File

@ -1,21 +0,0 @@
log-queries
log-dhcp
port=0
listen-address=0.0.0.0
interface=eth0
enable-tftp
tftp-root=/srv/tftpboot
dhcp-no-override
pxe-prompt="Cadoles PXE Boot in",5
pxe-service=X86PC,"Booting from network the Cadoles way",menu/boot.ipxe
dhcp-range=192.168.40.20,proxy
dhcp-match=set:ipxe,175
dhcp-vendorclass=BIOS,PXEClient:Arch:00000
dhcp-boot=tag:!ipxe,tag:BIOS,undionly.kpxe,192.168.40.20
dhcp-boot=tag:!ipxe,tag:!BIOS,ipxe.efi,192.168.40.20
dhcp-boot=tag:ipxe,menu/boot.ipxe

4
ipxe/etc/mini_httpd/mini_httpd.conf
View File

@ -1,4 +0,0 @@
port=80
user=minihttpd
dir=/srv/os/butane
nochroot

70
ipxe/tftpboot/menu/boot.ipxe
View File

@ -1,70 +0,0 @@
#!ipxe
set ignition-server MY_IP_HERE
#set base-url http://${ignition-server}/flatcar
set base-url http://stable.release.flatcar-linux.net/amd64-usr/current
set vm-install-target /dev/vda
set bm-install-target /dev/sda
:start
menu Cadoles PXE Boot Options
item gap1 -------------------- CadolesKube --------------------
item klead Run Leader (RAM)
item kmaster Run Master (RAM)
item knode Run Node (RAM)
item gap2 -----------------------------------------------------
item iklead Install Leader (VM)
item ikmaster Install Master (VM)
item iknode Install Node (VM)
item gap2 -----------------------------------------------------
item shell iPXE shell
item gap3 -----------------------------------------------------
item exit Exit to BIOS
choose --default exit --timeout 10000 option && goto ${option}
:shell
shell
:klead
set ignition-url http://${ignition-server}/os/leader.json
kernel ${base-url}/flatcar_production_pxe.vmlinuz initrd=flatcar_production_pxe_image.cpio.gz flatcar.first_boot=1 ignition.config.url=${ignition-url}
initrd ${base-url}/flatcar_production_pxe_image.cpio.gz
boot
:kmaster
set ignition-url http://${ignition-server}/os/leader.json
kernel ${base-url}/flatcar_production_pxe.vmlinuz initrd=flatcar_production_pxe_image.cpio.gz flatcar.first_boot=1 ignition.config.url=${ignition-url}
initrd ${base-url}/flatcar_production_pxe_image.cpio.gz
:knode
set ignition-url http://${ignition-server}/os/leader.json
kernel ${base-url}/flatcar_production_pxe.vmlinuz initrd=flatcar_production_pxe_image.cpio.gz flatcar.first_boot=1 ignition.config.url=${ignition-url}
initrd ${base-url}/flatcar_production_pxe_image.cpio.gz
:iklead
set ignition-url http://${ignition-server}/os/leader-install.json
kernel ${base-url}/flatcar_production_pxe.vmlinuz initrd=flatcar_production_pxe_image.cpio.gz flatcar.first_boot=1 flatcar.target=${vm-install-target} ignition.config.url=${ignition-url}
initrd ${base-url}/flatcar_production_pxe_image.cpio.gz
boot
:iknode
set ignition-url http://${ignition-server}/os/leader.json
kernel ${base-url}/flatcar_production_pxe.vmlinuz initrd=flatcar_production_pxe_image.cpio.gz flatcar.first_boot=1 flatcar.target=${vm-install-target} ignition.config.url=${ignition-url}
initrd ${base-url}/flatcar_production_pxe_image.cpio.gz
boot
:iknode
set ignition-url http://${ignition-server}/os/leader.json
kernel ${base-url}/flatcar_production_pxe.vmlinuz initrd=flatcar_production_pxe_image.cpio.gz flatcar.first_boot=1 flatcar.target=${vm-install-target} ignition.config.url=${ignition-url}
initrd ${base-url}/flatcar_production_pxe_image.cpio.gz
boot
:exit
exit

8
misc/scripts/basic-setup.sh
View File

@ -1,8 +0,0 @@
#!/bin/sh
ip=$(/sbin/ip -o -4 addr list eth0 | awk '{print $4}' | cut -d/ -f1)
sed -i -e "s/MY_IP_HERE/${ip}/g" /srv/tftpboot/menu/boot.ipxe
service dnsmasq start
service mini_httpd start

41
nfpm.yaml
View File

@ -1,41 +0,0 @@
# nfpm example config file
#
# check https://nfpm.goreleaser.com/configuration for detailed usage
#
name: "ckube-pxe"
arch: "amd64"
platform: "linux"
version: "v0.0.1"
section: "default"
priority: "extra"
maintainer: "Cadoles <contact@cadoles.com>"
description: |
CadolesKube OS Installer (iPXE)
vendor: "Cadoles"
homepage: "https://www.cadoles.com"
license: "GPL-v3"
changelog: "changelog.yaml"
contents:
- src: butane
dst: /srv/os/butane
- src: /srv/os/butane
dst: /var/www/localhost/htdocs/os
type: symlink
- src: ipxe/etc/dnsmasq.d
dst: /etc
- src: ipxe/tftpboot
dst: /srv/tftpboot
scripts:
postinstall: ./misc/scripts/basic-setup.sh
overrides:
apk:
depends:
- dnsmasq
- dnsmasq-openrc
- dnsmasq-common
- alpine-ipxe
- mini_httpd

112
scripts/aports/genapkovl-ckubeos.sh Normal file
View File

@ -0,0 +1,112 @@
#!/bin/sh -e
HOSTNAME="$1"
if [ -z "$HOSTNAME" ]; then
echo "usage: $0 hostname"
exit 1
fi
cleanup() {
rm -rf "$tmp"
}
makefile() {
OWNER="$1"
PERMS="$2"
FILENAME="$3"
cat > "$FILENAME"
chown "$OWNER" "$FILENAME"
chmod "$PERMS" "$FILENAME"
}
rc_add() {
mkdir -p "$tmp"/etc/runlevels/"$2"
ln -sf /etc/init.d/"$1" "$tmp"/etc/runlevels/"$2"/"$1"
}
tmp="$(mktemp -d)"
trap cleanup EXIT
mkdir -p "$tmp"/etc
makefile root:root 0644 "$tmp"/etc/hostname <<EOF
$HOSTNAME
EOF
mkdir -p "$tmp"/etc/network
makefile root:root 0644 "$tmp"/etc/network/interfaces <<EOF
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet dhcp
EOF
mkdir -p "$tmp/root/.ssh"
mkdir -p "$tmp/etc/apk"
echo '/media/cdrom' >> "$tmp/etc/apk/repositories"
echo "http://dl-cdn.alpinelinux.org/alpine/v3.16/main" >> "$tmp/etc/apk/repositories"
echo "http://dl-cdn.alpinelinux.org/alpine/v3.16/community" >> "$tmp/etc/apk/repositories"
echo "http://dl-cdn.alpinelinux.org/alpine/edge/testing" >> "$tmp/etc/apk/repositories"
echo "http://dl-cdn.alpinelinux.org/alpine/edge/community" >> "$tmp/etc/apk/repositories"
mkdir -p "$tmp"/etc/apk
makefile root:root 0644 "$tmp"/etc/apk/world <<EOF
alpine-base
util-linux
xfsprogs
vim
dfc
cni-plugin-flannel
cni-plugins
flannel
flannel-contrib-cni
kubelet
kubeadm
kubectl
uuidgen
docker
mtools
dosfstools
grub-efi
EOF
mkdir -p "$tmp"/etc/local.d
# =------------------------------------------------------------=
# Hello preseed script, my new friend.
#
# Note the single quotes around the EOF, to avoid evaluation
# at the time genapkovl runs.
# =------------------------------------------------------------=
makefile root:root 0755 "$tmp"/etc/local.d/preseed.start <<'EOF'
#!/bin/sh
# Fail fast, if we make it onto a live system.
test "$(hostname)" = "" || exit 111
# Here would be the preseed script in earnest. One that sets
# the hostname to something else than `preseed`, or at least
# makes sure the /etc/local.d/preseed.start isn't carried over.
# Lest you're a glutton for punishment.
echo "preseeded at $(date)" >> /root/preseeded.txt
EOF
rc_add devfs sysinit
rc_add dmesg sysinit
rc_add mdev sysinit
rc_add hwdrivers sysinit
rc_add modloop sysinit
rc_add hwclock boot
rc_add modules boot
rc_add sysctl boot
rc_add hostname boot
rc_add bootmisc boot
rc_add syslog boot
# we want our preseed to run & have network while at it
rc_add networking boot
rc_add local boot
rc_add mount-ro shutdown
rc_add killprocs shutdown
rc_add savecache shutdown
tar -c -C "$tmp" etc | gzip -9n > $HOSTNAME.apkovl.tar.gz

17
scripts/aports/mkimg.ckubeos.sh Normal file
View File

@ -0,0 +1,17 @@
profile_ckubeos() {
profile_standard
kernel_cmdline="unionfs_size=512M console=tty0 console=ttyS0,115200"
syslinux_serial="0 115200"
apks="$apks mtools parted rsync mtools dosfstools grub-efi vim util-linux curl coreutils strace dhcp dhcpcd kubeadm lvm2 dfc cni-plugin-flannel cni-plugins
flannel flannel-contrib-cni kubelet kubeadm kubectl uuidgen docker"
local _k _a
for _k in $kernel_flavors; do
apks="$apks linux-$_k"
for _a in $kernel_addons; do
apks="$apks $_a-$_k"
done
done
apks="$apks linux-firmware"
hostname="ckubeos"
apkovl="genapkovl-ckubeos.sh"
}

31
scripts/create-iso.sh Normal file
View File

@ -0,0 +1,31 @@
#!/bin/sh
#if [[ -z $1 || -z $2 ]]; then
if [[ -z $1 ]]; then
echo -e "ERREUR : paramétre(s) manquant(s) "
echo -e "Passer en paramétre : "
echo -e "1. Nom du profil (ex : ckubeos)"
# echo -e "2. Version de l'Alpine (forcé à edge pour le moment)"
echo ""
exit 1
else
PROFILENAME=$1
ALPINE_VERSION=$2
# Create output dir
if test ! -d ~/iso; then
echo "Creating output dir"
mkdir -p ~/iso
fi
echo "ISO generation"
cd ~/aports/scripts/
sh mkimage.sh --tag $ALPINE_VERSION \
--outdir /home/build/iso \
--arch x86_64 \
--repository http://dl-cdn.alpinelinux.org/alpine/v$ALPINE_VERSION/main \
--repository http://dl-cdn.alpinelinux.org/alpine/v$ALPINE_VERSION/community \
--repository http://dl-cdn.alpinelinux.org/alpine/edge/testing \
--repository http://dl-cdn.alpinelinux.org/alpine/edge/community \
--profile $PROFILENAME
fi