mirror of
				https://github.com/puppetmaster/typhoon.git
				synced 2025-10-20 23:25:56 +02:00 
			
		
		
		
	Update Kubernetes from v1.16.2 to v1.16.3
* https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG-1.16.md#v1163
This commit is contained in:
		| @@ -4,6 +4,9 @@ Notable changes between versions. | ||||
|  | ||||
| ## Latest | ||||
|  | ||||
| ## v1.16.3 | ||||
|  | ||||
| * Kubernetes [v1.16.3](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG-1.16.md#v1163) | ||||
| * Update etcd from v3.4.2 to v3.4.3 ([#582](https://github.com/poseidon/typhoon/pull/582)) | ||||
| * Upgrade Calico from v3.9.2 to [v3.10.1](https://docs.projectcalico.org/v3.10/release-notes/) | ||||
|   * Allow advertising service ClusterIPs to peer routers via a [BGPConfiguration](https://docs.projectcalico.org/v3.10/networking/advertise-service-ips) | ||||
|   | ||||
							
								
								
									
										10
									
								
								README.md
									
									
									
									
									
								
							
							
						
						
									
										10
									
								
								README.md
									
									
									
									
									
								
							| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [worker pools](https://typhoon.psdn.io/advanced/worker-pools/), [preemptible](https://typhoon.psdn.io/cl/google-cloud/#preemption) workers, and [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
| @@ -48,7 +48,7 @@ Define a Kubernetes cluster by using the Terraform module for your chosen platfo | ||||
|  | ||||
| ```tf | ||||
| module "google-cloud-yavin" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes?ref=v1.16.3" | ||||
|  | ||||
|   # Google Cloud | ||||
|   cluster_name  = "yavin" | ||||
| @@ -82,9 +82,9 @@ In 4-8 minutes (varies by platform), the cluster will be ready. This Google Clou | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/yavin/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME                                       ROLES    STATUS  AGE  VERSION | ||||
| yavin-controller-0.c.example-com.internal  <none>   Ready   6m   v1.16.2 | ||||
| yavin-worker-jrbf.c.example-com.internal   <none>   Ready   5m   v1.16.2 | ||||
| yavin-worker-mzdm.c.example-com.internal   <none>   Ready   5m   v1.16.2 | ||||
| yavin-controller-0.c.example-com.internal  <none>   Ready   6m   v1.16.3 | ||||
| yavin-worker-jrbf.c.example-com.internal   <none>   Ready   5m   v1.16.3 | ||||
| yavin-worker-mzdm.c.example-com.internal   <none>   Ready   5m   v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [worker pools](https://typhoon.psdn.io/advanced/worker-pools/), [spot](https://typhoon.psdn.io/cl/aws/#spot) workers, and [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Kubernetes assets (kubeconfig, manifests) | ||||
| module "bootstrap" { | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=a2b1dbe2c0c728c58fbdd34da12d19fa8bfdfcc2" | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0daa1276c633fea28e41b2c2c18831e2584deb24" | ||||
|  | ||||
|   cluster_name          = var.cluster_name | ||||
|   api_servers           = [format("%s.%s", var.cluster_name, var.dns_zone)] | ||||
|   | ||||
| @@ -113,7 +113,7 @@ systemd: | ||||
|             --volume script,kind=host,source=/opt/bootstrap/apply \ | ||||
|             --mount volume=script,target=/apply \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/apply | ||||
| @@ -134,7 +134,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /opt/bootstrap/apply | ||||
|       filesystem: root | ||||
|       mode: 0544 | ||||
|   | ||||
| @@ -98,7 +98,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /etc/sysctl.d/max-user-watches.conf | ||||
|       filesystem: root | ||||
|       contents: | ||||
| @@ -116,7 +116,7 @@ storage: | ||||
|             --volume config,kind=host,source=/etc/kubernetes \ | ||||
|             --mount volume=config,target=/etc/kubernetes \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/kubectl -- --kubeconfig=/etc/kubernetes/kubeconfig delete node $(hostname) | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [worker pools](https://typhoon.psdn.io/advanced/worker-pools/), [spot](https://typhoon.psdn.io/cl/aws/#spot) workers, and [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Kubernetes assets (kubeconfig, manifests) | ||||
| module "bootstrap" { | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=a2b1dbe2c0c728c58fbdd34da12d19fa8bfdfcc2" | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0daa1276c633fea28e41b2c2c18831e2584deb24" | ||||
|  | ||||
|   cluster_name          = var.cluster_name | ||||
|   api_servers           = [format("%s.%s", var.cluster_name, var.dns_zone)] | ||||
|   | ||||
| @@ -80,7 +80,7 @@ systemd: | ||||
|           --volume /var/run:/var/run \ | ||||
|           --volume /var/run/lock:/var/run/lock:z \ | ||||
|           --volume /opt/cni/bin:/opt/cni/bin:z \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.2 /hyperkube kubelet \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.3 /hyperkube kubelet \ | ||||
|           --anonymous-auth=false \ | ||||
|           --authentication-token-webhook \ | ||||
|           --authorization-mode=Webhook \ | ||||
| @@ -121,7 +121,7 @@ systemd: | ||||
|             --network host \ | ||||
|             --volume /opt/bootstrap/assets:/assets:ro,Z \ | ||||
|             --volume /opt/bootstrap/apply:/apply:ro,Z \ | ||||
|             k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             /apply | ||||
|         ExecStartPost=/bin/touch /opt/bootstrap/bootstrap.done | ||||
|         ExecStartPost=-/usr/bin/podman stop bootstrap | ||||
|   | ||||
| @@ -50,7 +50,7 @@ systemd: | ||||
|           --volume /var/run:/var/run \ | ||||
|           --volume /var/run/lock:/var/run/lock:z \ | ||||
|           --volume /opt/cni/bin:/opt/cni/bin:z \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.2 /hyperkube kubelet \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.3 /hyperkube kubelet \ | ||||
|           --anonymous-auth=false \ | ||||
|           --authentication-token-webhook \ | ||||
|           --authorization-mode=Webhook \ | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [worker pools](https://typhoon.psdn.io/advanced/worker-pools/), [low-priority](https://typhoon.psdn.io/cl/azure/#low-priority) workers, and [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Kubernetes assets (kubeconfig, manifests) | ||||
| module "bootstrap" { | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=a2b1dbe2c0c728c58fbdd34da12d19fa8bfdfcc2" | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0daa1276c633fea28e41b2c2c18831e2584deb24" | ||||
|  | ||||
|   cluster_name = var.cluster_name | ||||
|   api_servers  = [format("%s.%s", var.cluster_name, var.dns_zone)] | ||||
|   | ||||
| @@ -111,7 +111,7 @@ systemd: | ||||
|             --volume script,kind=host,source=/opt/bootstrap/apply \ | ||||
|             --mount volume=script,target=/apply \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/apply | ||||
| @@ -132,7 +132,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /opt/bootstrap/apply | ||||
|       filesystem: root | ||||
|       mode: 0544 | ||||
|   | ||||
| @@ -96,7 +96,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /etc/sysctl.d/max-user-watches.conf | ||||
|       filesystem: root | ||||
|       contents: | ||||
| @@ -114,7 +114,7 @@ storage: | ||||
|             --volume config,kind=host,source=/etc/kubernetes \ | ||||
|             --mount volume=config,target=/etc/kubernetes \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/kubectl -- --kubeconfig=/etc/kubernetes/kubeconfig delete node $(hostname | tr '[:upper:]' '[:lower:]') | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Kubernetes assets (kubeconfig, manifests) | ||||
| module "bootstrap" { | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=a2b1dbe2c0c728c58fbdd34da12d19fa8bfdfcc2" | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0daa1276c633fea28e41b2c2c18831e2584deb24" | ||||
|  | ||||
|   cluster_name                    = var.cluster_name | ||||
|   api_servers                     = [var.k8s_domain_name] | ||||
|   | ||||
| @@ -126,7 +126,7 @@ systemd: | ||||
|             --volume script,kind=host,source=/opt/bootstrap/apply \ | ||||
|             --mount volume=script,target=/apply \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/apply | ||||
| @@ -141,7 +141,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /etc/hostname | ||||
|       filesystem: root | ||||
|       mode: 0644 | ||||
|   | ||||
| @@ -91,7 +91,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /etc/hostname | ||||
|       filesystem: root | ||||
|       mode: 0644 | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Kubernetes assets (kubeconfig, manifests) | ||||
| module "bootstrap" { | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=a2b1dbe2c0c728c58fbdd34da12d19fa8bfdfcc2" | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0daa1276c633fea28e41b2c2c18831e2584deb24" | ||||
|  | ||||
|   cluster_name                    = var.cluster_name | ||||
|   api_servers                     = [var.k8s_domain_name] | ||||
|   | ||||
| @@ -81,7 +81,7 @@ systemd: | ||||
|           --volume /opt/cni/bin:/opt/cni/bin:z \ | ||||
|           --volume /etc/iscsi:/etc/iscsi \ | ||||
|           --volume /sbin/iscsiadm:/sbin/iscsiadm \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.2 /hyperkube kubelet \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.3 /hyperkube kubelet \ | ||||
|           --anonymous-auth=false \ | ||||
|           --authentication-token-webhook \ | ||||
|           --authorization-mode=Webhook \ | ||||
| @@ -132,7 +132,7 @@ systemd: | ||||
|             --network host \ | ||||
|             --volume /opt/bootstrap/assets:/assets:ro,Z \ | ||||
|             --volume /opt/bootstrap/apply:/apply:ro,Z \ | ||||
|             k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             /apply | ||||
|         ExecStartPost=/bin/touch /opt/bootstrap/bootstrap.done | ||||
|         ExecStartPost=-/usr/bin/podman stop bootstrap | ||||
|   | ||||
| @@ -51,7 +51,7 @@ systemd: | ||||
|           --volume /opt/cni/bin:/opt/cni/bin:z \ | ||||
|           --volume /etc/iscsi:/etc/iscsi \ | ||||
|           --volume /sbin/iscsiadm:/sbin/iscsiadm \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.2 /hyperkube kubelet \ | ||||
|           k8s.gcr.io/hyperkube:v1.16.3 /hyperkube kubelet \ | ||||
|           --anonymous-auth=false \ | ||||
|           --authentication-token-webhook \ | ||||
|           --authorization-mode=Webhook \ | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Kubernetes assets (kubeconfig, manifests) | ||||
| module "bootstrap" { | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=a2b1dbe2c0c728c58fbdd34da12d19fa8bfdfcc2" | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0daa1276c633fea28e41b2c2c18831e2584deb24" | ||||
|  | ||||
|   cluster_name = var.cluster_name | ||||
|   api_servers  = [format("%s.%s", var.cluster_name, var.dns_zone)] | ||||
|   | ||||
| @@ -123,7 +123,7 @@ systemd: | ||||
|             --volume script,kind=host,source=/opt/bootstrap/apply \ | ||||
|             --mount volume=script,target=/apply \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/apply | ||||
| @@ -138,7 +138,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /opt/bootstrap/apply | ||||
|       filesystem: root | ||||
|       mode: 0544 | ||||
|   | ||||
| @@ -99,7 +99,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /etc/sysctl.d/max-user-watches.conf | ||||
|       filesystem: root | ||||
|       contents: | ||||
| @@ -117,7 +117,7 @@ storage: | ||||
|             --volume config,kind=host,source=/etc/kubernetes \ | ||||
|             --mount volume=config,target=/etc/kubernetes \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/kubectl -- --kubeconfig=/etc/kubernetes/kubeconfig delete node $(hostname) | ||||
|   | ||||
| @@ -79,7 +79,7 @@ Create a cluster following the Azure [tutorial](../cl/azure.md#cluster). Define | ||||
|  | ||||
| ```tf | ||||
| module "ramius-worker-pool" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//azure/container-linux/kubernetes/workers?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//azure/container-linux/kubernetes/workers?ref=v1.16.3" | ||||
|    | ||||
|   # Azure | ||||
|   region                  = module.azure-ramius.region | ||||
| @@ -145,7 +145,7 @@ Create a cluster following the Google Cloud [tutorial](../cl/google-cloud.md#clu | ||||
|  | ||||
| ```tf | ||||
| module "yavin-worker-pool" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes/workers?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes/workers?ref=v1.16.3" | ||||
|  | ||||
|   # Google Cloud | ||||
|   region       = "europe-west2" | ||||
| @@ -176,11 +176,11 @@ Verify a managed instance group of workers joins the cluster within a few minute | ||||
| ``` | ||||
| $ kubectl get nodes | ||||
| NAME                                             STATUS   AGE    VERSION | ||||
| yavin-controller-0.c.example-com.internal        Ready    6m     v1.16.2 | ||||
| yavin-worker-jrbf.c.example-com.internal         Ready    5m     v1.16.2 | ||||
| yavin-worker-mzdm.c.example-com.internal         Ready    5m     v1.16.2 | ||||
| yavin-16x-worker-jrbf.c.example-com.internal     Ready    3m     v1.16.2 | ||||
| yavin-16x-worker-mzdm.c.example-com.internal     Ready    3m     v1.16.2 | ||||
| yavin-controller-0.c.example-com.internal        Ready    6m     v1.16.3 | ||||
| yavin-worker-jrbf.c.example-com.internal         Ready    5m     v1.16.3 | ||||
| yavin-worker-mzdm.c.example-com.internal         Ready    5m     v1.16.3 | ||||
| yavin-16x-worker-jrbf.c.example-com.internal     Ready    3m     v1.16.3 | ||||
| yavin-16x-worker-mzdm.c.example-com.internal     Ready    3m     v1.16.3 | ||||
| ``` | ||||
|  | ||||
| ### Variables | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # AWS | ||||
|  | ||||
| In this tutorial, we'll create a Kubernetes v1.16.2 cluster on AWS with Container Linux. | ||||
| In this tutorial, we'll create a Kubernetes v1.16.3 cluster on AWS with Container Linux. | ||||
|  | ||||
| We'll declare a Kubernetes cluster using the Typhoon Terraform module. Then apply the changes to create a VPC, gateway, subnets, security groups, controller instances, worker auto-scaling group, network load balancer, and TLS assets. | ||||
|  | ||||
| @@ -70,7 +70,7 @@ Define a Kubernetes cluster using the module `aws/container-linux/kubernetes`. | ||||
|  | ||||
| ```tf | ||||
| module "tempest" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//aws/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//aws/container-linux/kubernetes?ref=v1.16.3" | ||||
|  | ||||
|   # AWS | ||||
|   cluster_name = "tempest" | ||||
| @@ -135,9 +135,9 @@ In 4-8 minutes, the Kubernetes cluster will be ready. | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/tempest/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME           STATUS  ROLES   AGE  VERSION | ||||
| ip-10-0-3-155  Ready   <none>  10m  v1.16.2 | ||||
| ip-10-0-26-65  Ready   <none>  10m  v1.16.2 | ||||
| ip-10-0-41-21  Ready   <none>  10m  v1.16.2 | ||||
| ip-10-0-3-155  Ready   <none>  10m  v1.16.3 | ||||
| ip-10-0-26-65  Ready   <none>  10m  v1.16.3 | ||||
| ip-10-0-41-21  Ready   <none>  10m  v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -3,7 +3,7 @@ | ||||
| !!! danger | ||||
|     Typhoon for Azure is alpha. For production, use AWS, Google Cloud, or bare-metal. As Azure matures, check [errata](https://github.com/poseidon/typhoon/wiki/Errata) for known shortcomings. | ||||
|  | ||||
| In this tutorial, we'll create a Kubernetes v1.16.2 cluster on Azure with Container Linux. | ||||
| In this tutorial, we'll create a Kubernetes v1.16.3 cluster on Azure with Container Linux. | ||||
|  | ||||
| We'll declare a Kubernetes cluster using the Typhoon Terraform module. Then apply the changes to create a resource group, virtual network, subnets, security groups, controller availability set, worker scale set, load balancer, and TLS assets. | ||||
|  | ||||
| @@ -66,7 +66,7 @@ Define a Kubernetes cluster using the module `azure/container-linux/kubernetes`. | ||||
|  | ||||
| ```tf | ||||
| module "ramius" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//azure/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//azure/container-linux/kubernetes?ref=v1.16.3" | ||||
|  | ||||
|   # Azure | ||||
|   cluster_name   = "ramius" | ||||
| @@ -132,9 +132,9 @@ In 4-8 minutes, the Kubernetes cluster will be ready. | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/ramius/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME                  STATUS  ROLES   AGE  VERSION | ||||
| ramius-controller-0   Ready   <none>  24m  v1.16.2 | ||||
| ramius-worker-000001  Ready   <none>  25m  v1.16.2 | ||||
| ramius-worker-000002  Ready   <none>  24m  v1.16.2 | ||||
| ramius-controller-0   Ready   <none>  24m  v1.16.3 | ||||
| ramius-worker-000001  Ready   <none>  25m  v1.16.3 | ||||
| ramius-worker-000002  Ready   <none>  24m  v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Bare-Metal | ||||
|  | ||||
| In this tutorial, we'll network boot and provision a Kubernetes v1.16.2 cluster on bare-metal with Container Linux. | ||||
| In this tutorial, we'll network boot and provision a Kubernetes v1.16.3 cluster on bare-metal with Container Linux. | ||||
|  | ||||
| First, we'll deploy a [Matchbox](https://github.com/poseidon/matchbox) service and setup a network boot environment. Then, we'll declare a Kubernetes cluster using the Typhoon Terraform module and power on machines. On PXE boot, machines will install Container Linux to disk, reboot into the disk install, and provision themselves as Kubernetes controllers or workers via Ignition. | ||||
|  | ||||
| @@ -160,7 +160,7 @@ Define a Kubernetes cluster using the module `bare-metal/container-linux/kuberne | ||||
|  | ||||
| ```tf | ||||
| module "bare-metal-mercury" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//bare-metal/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//bare-metal/container-linux/kubernetes?ref=v1.16.3" | ||||
|    | ||||
|   # bare-metal | ||||
|   cluster_name            = "mercury" | ||||
| @@ -265,9 +265,9 @@ Apply complete! Resources: 55 added, 0 changed, 0 destroyed. | ||||
| To watch the install to disk (until machines reboot from disk), SSH to port 2222. | ||||
|  | ||||
| ``` | ||||
| # before v1.16.2 | ||||
| # before v1.16.3 | ||||
| $ ssh debug@node1.example.com | ||||
| # after v1.16.2 | ||||
| # after v1.16.3 | ||||
| $ ssh -p 2222 core@node1.example.com | ||||
| ``` | ||||
|  | ||||
| @@ -291,9 +291,9 @@ systemd[1]: Started Kubernetes control plane. | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/mercury/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME                STATUS  ROLES   AGE  VERSION | ||||
| node1.example.com   Ready   <none>  10m  v1.16.2 | ||||
| node2.example.com   Ready   <none>  10m  v1.16.2 | ||||
| node3.example.com   Ready   <none>  10m  v1.16.2 | ||||
| node1.example.com   Ready   <none>  10m  v1.16.3 | ||||
| node2.example.com   Ready   <none>  10m  v1.16.3 | ||||
| node3.example.com   Ready   <none>  10m  v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Digital Ocean | ||||
|  | ||||
| In this tutorial, we'll create a Kubernetes v1.16.2 cluster on DigitalOcean with Container Linux. | ||||
| In this tutorial, we'll create a Kubernetes v1.16.3 cluster on DigitalOcean with Container Linux. | ||||
|  | ||||
| We'll declare a Kubernetes cluster using the Typhoon Terraform module. Then apply the changes to create controller droplets, worker droplets, DNS records, tags, and TLS assets. | ||||
|  | ||||
| @@ -65,7 +65,7 @@ Define a Kubernetes cluster using the module `digital-ocean/container-linux/kube | ||||
|  | ||||
| ```tf | ||||
| module "digital-ocean-nemo" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//digital-ocean/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//digital-ocean/container-linux/kubernetes?ref=v1.16.3" | ||||
|  | ||||
|   # Digital Ocean | ||||
|   cluster_name = "nemo" | ||||
| @@ -130,9 +130,9 @@ In 3-6 minutes, the Kubernetes cluster will be ready. | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/nemo/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME               STATUS  ROLES   AGE  VERSION | ||||
| 10.132.110.130     Ready   <none>  10m  v1.16.2 | ||||
| 10.132.115.81      Ready   <none>  10m  v1.16.2 | ||||
| 10.132.124.107     Ready   <none>  10m  v1.16.2 | ||||
| 10.132.110.130     Ready   <none>  10m  v1.16.3 | ||||
| 10.132.115.81      Ready   <none>  10m  v1.16.3 | ||||
| 10.132.124.107     Ready   <none>  10m  v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Google Cloud | ||||
|  | ||||
| In this tutorial, we'll create a Kubernetes v1.16.2 cluster on Google Compute Engine with Container Linux. | ||||
| In this tutorial, we'll create a Kubernetes v1.16.3 cluster on Google Compute Engine with Container Linux. | ||||
|  | ||||
| We'll declare a Kubernetes cluster using the Typhoon Terraform module. Then apply the changes to create a network, firewall rules, health checks, controller instances, worker managed instance group, load balancers, and TLS assets. | ||||
|  | ||||
| @@ -71,7 +71,7 @@ Define a Kubernetes cluster using the module `google-cloud/container-linux/kuber | ||||
|  | ||||
| ```tf | ||||
| module "google-cloud-yavin" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes?ref=v1.16.3" | ||||
|  | ||||
|   # Google Cloud | ||||
|   cluster_name  = "yavin" | ||||
| @@ -137,9 +137,9 @@ In 4-8 minutes, the Kubernetes cluster will be ready. | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/yavin/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME                                       ROLES    STATUS  AGE  VERSION | ||||
| yavin-controller-0.c.example-com.internal  <none>   Ready   6m   v1.16.2 | ||||
| yavin-worker-jrbf.c.example-com.internal   <none>   Ready   5m   v1.16.2 | ||||
| yavin-worker-mzdm.c.example-com.internal   <none>   Ready   5m   v1.16.2 | ||||
| yavin-controller-0.c.example-com.internal  <none>   Ready   6m   v1.16.3 | ||||
| yavin-worker-jrbf.c.example-com.internal   <none>   Ready   5m   v1.16.3 | ||||
| yavin-worker-mzdm.c.example-com.internal   <none>   Ready   5m   v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -3,7 +3,7 @@ | ||||
| !!! danger | ||||
|     Typhoon for Fedora CoreOS is an early preview! Fedora CoreOS itself is a preview! Expect bugs and design shifts. Please help both projects solve problems. Report Fedora CoreOS bugs to [Fedora](https://github.com/coreos/fedora-coreos-tracker/issues). Report Typhoon issues to Typhoon. | ||||
|  | ||||
| In this tutorial, we'll create a Kubernetes v1.16.2 cluster on AWS with Fedora CoreOS. | ||||
| In this tutorial, we'll create a Kubernetes v1.16.3 cluster on AWS with Fedora CoreOS. | ||||
|  | ||||
| We'll declare a Kubernetes cluster using the Typhoon Terraform module. Then apply the changes to create a VPC, gateway, subnets, security groups, controller instances, worker auto-scaling group, network load balancer, and TLS assets. | ||||
|  | ||||
| @@ -73,7 +73,7 @@ Define a Kubernetes cluster using the module `aws/fedora-coreos/kubernetes`. | ||||
|  | ||||
| ```tf | ||||
| module "aws-tempest" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//aws/fedora-coreos/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//aws/fedora-coreos/kubernetes?ref=v1.16.3" | ||||
|  | ||||
|   # AWS | ||||
|   cluster_name = "tempest" | ||||
| @@ -138,9 +138,9 @@ In 4-8 minutes, the Kubernetes cluster will be ready. | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/tempest/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME           STATUS  ROLES    AGE  VERSION | ||||
| ip-10-0-3-155  Ready   <none>   10m  v1.16.2 | ||||
| ip-10-0-26-65  Ready   <none>   10m  v1.16.2 | ||||
| ip-10-0-41-21  Ready   <none>   10m  v1.16.2 | ||||
| ip-10-0-3-155  Ready   <none>   10m  v1.16.3 | ||||
| ip-10-0-26-65  Ready   <none>   10m  v1.16.3 | ||||
| ip-10-0-41-21  Ready   <none>   10m  v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -3,7 +3,7 @@ | ||||
| !!! danger | ||||
|     Typhoon for Fedora CoreOS is an early preview! Fedora CoreOS itself is a preview! Expect bugs and design shifts. Please help both projects solve problems. Report Fedora CoreOS bugs to [Fedora](https://github.com/coreos/fedora-coreos-tracker/issues). Report Typhoon issues to Typhoon. | ||||
|  | ||||
| In this tutorial, we'll network boot and provision a Kubernetes v1.16.2 cluster on bare-metal with Fedora CoreOS. | ||||
| In this tutorial, we'll network boot and provision a Kubernetes v1.16.3 cluster on bare-metal with Fedora CoreOS. | ||||
|  | ||||
| First, we'll deploy a [Matchbox](https://github.com/poseidon/matchbox) service and setup a network boot environment. Then, we'll declare a Kubernetes cluster using the Typhoon Terraform module and power on machines. On PXE boot, machines will install Fedora CoreOS to disk, reboot into the disk install, and provision themselves as Kubernetes controllers or workers via Ignition. | ||||
|  | ||||
| @@ -163,7 +163,7 @@ Define a Kubernetes cluster using the module `bare-metal/fedora-coreos/kubernete | ||||
|  | ||||
| ```tf | ||||
| module "bare-metal-mercury" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//bare-metal/fedora-coreos/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//bare-metal/fedora-coreos/kubernetes?ref=v1.16.3" | ||||
|    | ||||
|   # bare-metal | ||||
|   cluster_name            = "mercury" | ||||
| @@ -285,9 +285,9 @@ systemd[1]: Started Kubernetes control plane. | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/mercury/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME                STATUS  ROLES   AGE  VERSION | ||||
| node1.example.com   Ready   <none>  10m  v1.16.2 | ||||
| node2.example.com   Ready   <none>  10m  v1.16.2 | ||||
| node3.example.com   Ready   <none>  10m  v1.16.2 | ||||
| node1.example.com   Ready   <none>  10m  v1.16.3 | ||||
| node2.example.com   Ready   <none>  10m  v1.16.3 | ||||
| node3.example.com   Ready   <none>  10m  v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [worker pools](advanced/worker-pools/), [preemptible](cl/google-cloud/#preemption) workers, and [snippets](advanced/customization/#container-linux) customization | ||||
| @@ -47,7 +47,7 @@ Define a Kubernetes cluster by using the Terraform module for your chosen platfo | ||||
|  | ||||
| ```tf | ||||
| module "google-cloud-yavin" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//google-cloud/container-linux/kubernetes?ref=v1.16.3" | ||||
|  | ||||
|   # Google Cloud | ||||
|   cluster_name  = "yavin" | ||||
| @@ -80,9 +80,9 @@ In 4-8 minutes (varies by platform), the cluster will be ready. This Google Clou | ||||
| $ export KUBECONFIG=/home/user/.secrets/clusters/yavin/auth/kubeconfig | ||||
| $ kubectl get nodes | ||||
| NAME                                       ROLES    STATUS  AGE  VERSION | ||||
| yavin-controller-0.c.example-com.internal  <none>   Ready   6m   v1.16.2 | ||||
| yavin-worker-jrbf.c.example-com.internal   <none>   Ready   5m   v1.16.2 | ||||
| yavin-worker-mzdm.c.example-com.internal   <none>   Ready   5m   v1.16.2 | ||||
| yavin-controller-0.c.example-com.internal  <none>   Ready   6m   v1.16.3 | ||||
| yavin-worker-jrbf.c.example-com.internal   <none>   Ready   5m   v1.16.3 | ||||
| yavin-worker-mzdm.c.example-com.internal   <none>   Ready   5m   v1.16.3 | ||||
| ``` | ||||
|  | ||||
| List the pods. | ||||
|   | ||||
| @@ -18,7 +18,7 @@ module "google-cloud-yavin" { | ||||
| } | ||||
|  | ||||
| module "bare-metal-mercury" { | ||||
|   source = "git::https://github.com/poseidon/typhoon//bare-metal/container-linux/kubernetes?ref=v1.16.2" | ||||
|   source = "git::https://github.com/poseidon/typhoon//bare-metal/container-linux/kubernetes?ref=v1.16.3" | ||||
|   ... | ||||
| } | ||||
| ``` | ||||
| @@ -279,15 +279,15 @@ Typhoon modules have been adapted for Terraform v0.12. Provider plugins requirem | ||||
|  | ||||
| | Typhoon Release   | Terraform version   | | ||||
| |-------------------|---------------------| | ||||
| | v1.16.2 - ?       | v0.12.x             | | ||||
| | v1.10.3 - v1.16.2 | v0.11.x             | | ||||
| | v1.16.3 - ?       | v0.12.x             | | ||||
| | v1.10.3 - v1.16.3 | v0.11.x             | | ||||
| | v1.9.2 - v1.10.2  | v0.10.4+ or v0.11.x | | ||||
| | v1.7.3 - v1.9.1   | v0.10.x             | | ||||
| | v1.6.4 - v1.7.2   | v0.9.x              | | ||||
|  | ||||
| ### New users | ||||
|  | ||||
| New users can start with Terraform v0.12.x and follow the docs for Typhoon v1.16.2+ without issue. | ||||
| New users can start with Terraform v0.12.x and follow the docs for Typhoon v1.16.3+ without issue. | ||||
|  | ||||
| ### Existing users | ||||
|  | ||||
| @@ -404,7 +404,7 @@ tree . | ||||
| └── infraB  <- new Terraform v0.12.x configs | ||||
| ``` | ||||
|  | ||||
| Define Typhoon clusters in the new config directory using Terraform v0.12 syntax. Follow the Typhoon v1.16.2+ docs (e.g. use `terraform12` in the `infraB` dir). See [AWS](/cl/aws), [Azure](/cl/azure), [Bare-Metal](/cl/bare-metal), [Digital Ocean](/cl/digital-ocean), or [Google-Cloud](/cl/google-cloud)) to create new clusters. Follow the usual [upgrade](/topics/maintenance/#upgrades) process to apply workloads and shift traffic. Later, switch back to the old config directory and deprovision clusters with Terraform v0.11. | ||||
| Define Typhoon clusters in the new config directory using Terraform v0.12 syntax. Follow the Typhoon v1.16.3+ docs (e.g. use `terraform12` in the `infraB` dir). See [AWS](/cl/aws), [Azure](/cl/azure), [Bare-Metal](/cl/bare-metal), [Digital Ocean](/cl/digital-ocean), or [Google-Cloud](/cl/google-cloud)) to create new clusters. Follow the usual [upgrade](/topics/maintenance/#upgrades) process to apply workloads and shift traffic. Later, switch back to the old config directory and deprovision clusters with Terraform v0.11. | ||||
|  | ||||
| ```shell | ||||
| terraform12 init | ||||
|   | ||||
| @@ -11,7 +11,7 @@ Typhoon distributes upstream Kubernetes, architectural conventions, and cluster | ||||
|  | ||||
| ## Features <a href="https://www.cncf.io/certification/software-conformance/"><img align="right" src="https://storage.googleapis.com/poseidon/certified-kubernetes.png"></a> | ||||
|  | ||||
| * Kubernetes v1.16.2 (upstream) | ||||
| * Kubernetes v1.16.3 (upstream) | ||||
| * Single or multi-master, [Calico](https://www.projectcalico.org/) or [flannel](https://github.com/coreos/flannel) networking | ||||
| * On-cluster etcd with TLS, [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/)-enabled, [network policy](https://kubernetes.io/docs/concepts/services-networking/network-policies/) | ||||
| * Advanced features like [worker pools](https://typhoon.psdn.io/advanced/worker-pools/), [preemptible](https://typhoon.psdn.io/cl/google-cloud/#preemption) workers, and [snippets](https://typhoon.psdn.io/advanced/customization/#container-linux) customization | ||||
|   | ||||
| @@ -1,6 +1,6 @@ | ||||
| # Kubernetes assets (kubeconfig, manifests) | ||||
| module "bootstrap" { | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=a2b1dbe2c0c728c58fbdd34da12d19fa8bfdfcc2" | ||||
|   source = "git::https://github.com/poseidon/terraform-render-bootstrap.git?ref=0daa1276c633fea28e41b2c2c18831e2584deb24" | ||||
|  | ||||
|   cluster_name          = var.cluster_name | ||||
|   api_servers           = [format("%s.%s", var.cluster_name, var.dns_zone)] | ||||
|   | ||||
| @@ -112,7 +112,7 @@ systemd: | ||||
|             --volume script,kind=host,source=/opt/bootstrap/apply \ | ||||
|             --mount volume=script,target=/apply \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/apply | ||||
| @@ -133,7 +133,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /opt/bootstrap/apply | ||||
|       filesystem: root | ||||
|       mode: 0544 | ||||
|   | ||||
| @@ -97,7 +97,7 @@ storage: | ||||
|       contents: | ||||
|         inline: | | ||||
|           KUBELET_IMAGE_URL=docker://k8s.gcr.io/hyperkube | ||||
|           KUBELET_IMAGE_TAG=v1.16.2 | ||||
|           KUBELET_IMAGE_TAG=v1.16.3 | ||||
|     - path: /etc/sysctl.d/max-user-watches.conf | ||||
|       filesystem: root | ||||
|       contents: | ||||
| @@ -115,7 +115,7 @@ storage: | ||||
|             --volume config,kind=host,source=/etc/kubernetes \ | ||||
|             --mount volume=config,target=/etc/kubernetes \ | ||||
|             --insecure-options=image \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.2 \ | ||||
|             docker://k8s.gcr.io/hyperkube:v1.16.3 \ | ||||
|             --net=host \ | ||||
|             --dns=host \ | ||||
|             --exec=/kubectl -- --kubeconfig=/etc/kubernetes/kubeconfig delete node $(hostname) | ||||
|   | ||||
		Reference in New Issue
	
	Block a user