Dalton Hubble
d7e0536838
Add code group blocks to improve worker pool docs
...
* Show Fedora CoreOS and Flatcar Linux examples in
separate tabs, rather than trying to show one
* Add copyright footer for the poseidon org
2020-08-28 00:25:12 -07:00
Dalton Hubble
8dd221a57c
Add fleetlock docs and links to addons
...
* Add links to fleetlock for Fedora CoreOS reboot coordination
* https://github.com/poseidon/fleetlock
2020-08-28 00:02:24 -07:00
Dalton Hubble
f17bb4cf61
Update mkdocs-material from v5.5.6 to v5.5.9
2020-08-27 09:20:18 -07:00
Dalton Hubble
44f1fe620a
Update recommended Terraform provider versions
...
* Sync Terraform provider plugins with those used internally
2020-08-27 09:18:39 -07:00
Dalton Hubble
a504264e24
Update Grafana from v7.1.4 to v7.1.5
...
* https://github.com/grafana/grafana/releases/tag/v7.1.5
2020-08-27 08:52:07 -07:00
Dalton Hubble
88cf7273dc
Update Kubernetes from v1.18.8 to v1.19.0
...
* https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.19.md
2020-08-27 08:50:01 -07:00
Dalton Hubble
58def65a09
Update Grafana from v7.1.3 to v7.1.4
...
* https://github.com/grafana/grafana/releases/tag/v7.1.4
2020-08-22 15:40:09 -07:00
Dalton Hubble
cd7fd29194
Update etcd from v3.4.10 to v3.4.12
...
* https://github.com/etcd-io/etcd/blob/master/CHANGELOG-3.4.md
2020-08-19 21:25:41 -07:00
Bo Huang
aafa38476a
Fix SELinux race condition on non-bootstrap controllers in multi-controller ( #808 )
...
* Fix race condition for bootstrap-secrets SELinux context on non-bootstrap controllers in multi-controller FCOS clusters
* On first boot from disk on non-bootstrap controllers, adding bootstrap-secrets races with kubelet.service starting, which can cause the secrets assets to have the wrong label until kubelet.service restarts (service, reboot, auto-update)
* This can manifest as `kube-apiserver`, `kube-controller-manager`, and `kube-scheduler` pods crashlooping on spare controllers on first cluster creation
2020-08-19 21:18:10 -07:00
Dalton Hubble
9a07f1d30b
Update recommended Terraform provider versions
...
* Sync Terraform provider plugin versions to those used
internally
* Update mkdocs-material from v5.5.1 to v5.5.6
* Fix minor details in docs
2020-08-14 10:05:52 -07:00
Dalton Hubble
c87db3ef37
Update Kubernetes from v1.18.6 to v1.18.8
...
* https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md#v1188
2020-08-13 20:47:43 -07:00
Dalton Hubble
342380cfa4
Update Terraform migration guide SHA
...
* Mention the first master branch SHA that introduced Terraform
v0.13 forward compatibility
* Link the migration guide on Github until a release is available
and website docs are published
2020-08-13 00:36:47 -07:00
Dalton Hubble
5e70d7e2c8
Migrate from Terraform v0.12.x to v0.13.x
...
* Recommend Terraform v0.13.x
* Support automatic install of poseidon's provider plugins
* Update tutorial docs for Terraform v0.13.x
* Add migration guide for Terraform v0.13.x (best-effort)
* Require Terraform v0.12.26+ (migration compatibility)
* Require `terraform-provider-ct` v0.6.1
* Require `terraform-provider-matchbox` v0.4.1
* Require `terraform-provider-digitalocean` v1.20+
Related:
* https://www.hashicorp.com/blog/announcing-hashicorp-terraform-0-13/
* https://www.terraform.io/upgrade-guides/0-13.html
* https://registry.terraform.io/providers/poseidon/ct/latest
* https://registry.terraform.io/providers/poseidon/matchbox/latest
2020-08-12 01:54:32 -07:00
Dalton Hubble
aab071309f
Update recommended Terraform provider versions
...
* Sync Terraform provider plugin versions to those used
internally
2020-08-09 12:40:22 -07:00
Dalton Hubble
f6ce12766b
Allow terraform-provider-aws v3.0+ plugin
...
* Typhoon AWS is compatible with terraform-provider-aws v3.x releases
* Continue to allow v2.23+, no v3.x specific features are used
* Set required provider versions in the worker module, since
it can be used independently
Related:
* https://github.com/terraform-providers/terraform-provider-aws/releases/tag/v3.0.0
2020-08-09 12:39:26 -07:00
Dalton Hubble
e1d6ab2f24
Update Grafana from v7.1.1 to v7.1.3
...
* https://github.com/grafana/grafana/releases/tag/v7.1.3
* https://github.com/grafana/grafana/releases/tag/v7.1.2
2020-08-08 18:59:49 -07:00
Dalton Hubble
8b3d41d6a0
Update mkdocs-material from v5.4.0 to v5.5.1
2020-08-02 15:22:10 -07:00
Dalton Hubble
ccee5d3d89
Update from coreos/flannel-cni to poseidon/flannel-cni
...
* Update CNI plugins from v0.6.0 to v0.8.6 to fix several CVEs
* Update the base image to alpine:3.12
* Use `flannel-cni` as an init container and remove sleep
* https://github.com/poseidon/terraform-render-bootstrap/pull/205
* https://github.com/poseidon/flannel-cni
* https://quay.io/repository/poseidon/flannel-cni
Background
* Switch from github.com/coreos/flannel-cni v0.3.0 which was last
published by me in 2017 and is no longer accessible to me to maintain
or patch
* Port to the poseidon/flannel-cni rewrite, which releases v0.4.0
to continue the prior release numbering
2020-08-02 15:13:15 -07:00
Dalton Hubble
8aefd4f082
Relex terraform-provider-matchbox version constraint
...
* Allow use of terraform-provider-matchbox v0.3+ (which
allows v0.3.0 <= version < v1.0) for any pre 1.0 release
* Before, the requirement was v0.3.0 <= version < v0.4.0
2020-08-02 01:09:28 -07:00
Dalton Hubble
78e6409bd0
Fix flannel support on Fedora CoreOS
...
* Fedora CoreOS now ships systemd-udev's `default.link` while
Flannel relies on being able to pick its own MAC address for
the `flannel.1` link for tunneled traffic to reach cni0 on
the destination side, without being dropped
* This change first appeared in FCOS testing-devel 32.20200624.20.1
and is the behavior going forward in FCOS since it was added
to align FCOS network naming / configs with the rest of Fedora
and address issues related to the default being missing
* Flatcar Linux (and Container Linux) has a specific flannel.link
configuration builtin, so it was not affected
* https://github.com/coreos/fedora-coreos-tracker/issues/574#issuecomment-665487296
Note: Typhoon's recommended and default CNI provider is Calico,
unless `networking` is set to flannel directly.
2020-08-01 21:22:08 -07:00
Dalton Hubble
2aef42d4f6
Update Prometheus from v2.19.2 to v2.20.0
...
* https://github.com/prometheus/prometheus/releases/tag/v2.20.0
2020-07-25 16:37:28 -07:00
Dalton Hubble
b7d67757de
Update Grafana from v7.1.0 to v7.1.1
...
* https://github.com/grafana/grafana/releases/tag/v7.1.1
2020-07-25 16:33:40 -07:00
Eldon
26f5d2d753
Fix some links in docs ( #788 )
2020-07-25 16:32:08 -07:00
Dalton Hubble
cd0a28904e
Update Cilium from v1.8.1 to v1.8.2
...
* https://github.com/cilium/cilium/releases/tag/v1.8.2
2020-07-25 16:06:27 -07:00
Dalton Hubble
618f8b30fd
Update CoreDNS from v1.6.7 to v1.7.0
...
* https://coredns.io/2020/06/15/coredns-1.7.0-release/
* Update Grafana dashboard with revised metrics names
2020-07-25 15:51:31 -07:00
Dalton Hubble
264d23a1b5
Declare etcd data directory permissions
...
* Set etcd data directory /var/lib/etcd permissions to 700
* On Flatcar Linux, /var/lib/etcd is pre-existing and Ignition
v2 doesn't overwrite the directory. Update the Container Linux
config, but add the manual chmod workaround to bootstrap for
Flatcar Linux users
* https://github.com/etcd-io/etcd/blob/master/CHANGELOG-3.4.md#v3410-2020-07-16
* https://github.com/etcd-io/etcd/pull/11798
2020-07-25 15:48:27 -07:00
Dalton Hubble
f96e91f225
Update etcd from v3.4.9 to v3.4.10
...
* https://github.com/etcd-io/etcd/releases/tag/v3.4.10
2020-07-18 14:08:22 -07:00
Dalton Hubble
efd4a0319d
Update Grafana from v7.0.6 to v7.1.0
...
* https://github.com/grafana/grafana/releases/tag/v7.1.0
2020-07-18 13:54:56 -07:00
Dalton Hubble
6df6bf904a
Show Cilium as a CNI provider option in docs
...
* Start to show Cilium as a CNI option
* https://github.com/cilium/cilium
2020-07-18 13:27:56 -07:00
Dalton Hubble
5fba20d358
Update recommended Terraform provider versions
...
* Sync Terraform provider plugin versions with those
used internally
2020-07-18 13:19:25 -07:00
Dalton Hubble
a8d3d3bb12
Update ingress-nginx from v0.33.0 to v0.34.1
...
* Switch to ingress-nginx controller images from us.grc.io (eu, asia
can also be used if desired)
* https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v0.34.1
* https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v0.34.0
2020-07-15 22:43:49 -07:00
Dalton Hubble
9ea6d2c245
Update Kubernetes from v1.18.5 to v1.18.6
...
* https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md#v1186
* https://github.com/poseidon/terraform-render-bootstrap/pull/201
2020-07-15 22:05:57 -07:00
Dalton Hubble
507aac9b78
Update mkdocs-material from v5.3.3 to v5.4.0
2020-07-11 22:56:59 -07:00
Dalton Hubble
dfd2a0ec23
Update Grafana from v7.0.5 to v7.0.6
...
* https://github.com/grafana/grafana/releases/tag/v7.0.6
2020-07-09 21:10:48 -07:00
Dalton Hubble
e3bf7d8f9b
Update Prometheus from v2.19.1 to v2.19.2
...
* https://github.com/prometheus/prometheus/releases/tag/v2.19.2
2020-07-09 21:08:55 -07:00
Dalton Hubble
49050320ce
Update Cilium from v1.8.0 to v1.8.1
...
* https://github.com/cilium/cilium/releases/tag/v1.8.1
2020-07-05 16:00:00 -07:00
Dalton Hubble
74e025c9e4
Update Grafana from v7.0.4 to v7.0.5
...
* https://github.com/grafana/grafana/releases/tag/v7.0.5
2020-07-05 15:49:34 -07:00
Dalton Hubble
257a49ce37
Remove CoreOS Container Linux image names from docs
...
* Remove coreos-stable, coreos-beta, and coreos-alpha channel
references from docs
* CoreOS Container Linux is end of life (see changelog)
2020-06-30 01:36:53 -07:00
Dalton Hubble
df3f40bcce
Allow using Flatcar Linux edge on Azure
...
* Set Kubelet cgroup driver to systemd when Flatcar Linux edge
is chosen
Note: Typhoon module status assumes use of the stable variant of
an OS channel/stream. Its possible to use earlier variants and
those are sometimes tested or developed against, but stable is
the recommendation
2020-06-30 01:35:29 -07:00
Dalton Hubble
32886cfba1
Promote Fedora CoreOS on Google Cloud to stable status
2020-06-29 23:09:11 -07:00
Dalton Hubble
0ba2c1a4da
Fix terraform fmt in firewall rules
2020-06-29 23:04:54 -07:00
Dalton Hubble
430d139a5b
Remove os_image variable on Google Cloud Fedora CoreOS
...
* In v1.18.3, the `os_stream` variable was added to select
a Fedora CoreOS image stream (stable, testing, next) on
AWS and Google Cloud (which publish official streams)
* Remove `os_image` variable deprecated in v1.18.3. Manually
uploaded images are no longer needed
2020-06-29 22:57:11 -07:00
Dalton Hubble
7c6ab21b94
Isolate each DigitalOcean cluster in its own VPC
...
* DigitalOcean introduced Virtual Private Cloud (VPC) support
to match other clouds and enhance the prior "private networking"
feature. Before, droplet's belonging to different clusters (but
residing in the same region) could reach one another (although
Typhoon firewall rules prohibit this). Now, droplets in a VPC
reside in their own network
* https://www.digitalocean.com/docs/networking/vpc/
* Create droplet instances in a VPC per cluster. This matches the
design of Typhoon AWS, Azure, and GCP.
* Require `terraform-provider-digitalocean` v1.16.0+ (action required)
* Output `vpc_id` for use with an attached DigitalOcean
loadbalancer
2020-06-28 23:25:30 -07:00
Dalton Hubble
21178868db
Revert "Update Prometheus from v2.19.1 to v2.19.2"
...
* Prometheus has not published the v1.19.2
* This reverts commit 81b6f54169
.
2020-06-27 14:53:58 -07:00
Dalton Hubble
9dcf35e393
Update recommended Terraform provider versions
...
* Sync Terraform provider plugin versions with those
used internally
2020-06-27 14:44:18 -07:00
Dalton Hubble
81b6f54169
Update Prometheus from v2.19.1 to v2.19.2
...
* https://github.com/prometheus/prometheus/releases/tag/v2.19.2
2020-06-27 14:34:30 -07:00
Dalton Hubble
7bce15975c
Update Kubernetes from v1.18.4 to v1.18.5
...
* https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.18.md#v1185
2020-06-27 13:52:18 -07:00
Dalton Hubble
1f83ae7dbb
Update Calico from v3.14.1 to v3.15.0
...
* https://docs.projectcalico.org/v3.15/release-notes/
2020-06-26 02:40:12 -07:00
Dalton Hubble
a10a1cee9f
Update mkdocs-material from v5.3.0 to v5.3.3
2020-06-26 02:24:37 -07:00
Dalton Hubble
a79ad34ba3
Update Grafana from v7.0.3 to v7.0.4
...
* https://github.com/grafana/grafana/releases/tag/v7.0.4
2020-06-26 02:06:38 -07:00