Skip to content
Snippets Groups Projects
Unverified Commit 544aa00c authored by Hans Feldt's avatar Hans Feldt Committed by GitHub
Browse files

install etcdctl to host when etcd deployment type is kubeadm (#6857) 


* create a wrapper script with pki options
* supports all kubespray managed container engines

Co-authored-by: default avatarHans Feldt <hafe@users.noreply.github.com>
parent fc224536
Branches
Tags
No related merge requests found
Hide whitespace changes
Inline Side-by-side
docs/cri-o.md
+ 3
2
View file @ 544aa00c
......@@ -4,7 +4,7 @@
Kubespray supports basic functionality for using CRI-O as the default container runtime in a cluster.
* Kubernetes supports CRI-O on v1.11.1 or later.
* `scale.yml` and `upgrade-cluster.yml` are not supported on clusters using CRI-O.
* etcd: configure either kubeadm managed etcd or host deployment
_To use the CRI-O container runtime set the following variables:_
......@@ -13,6 +13,7 @@ _To use the CRI-O container runtime set the following variables:_
```yaml
download_container: false
skip_downloads: false
etcd_kubeadm_enabled: true
```
## k8s-cluster.yml
......@@ -24,7 +25,7 @@ container_manager: crio
## etcd.yml
```yaml
etcd_deployment_type: host
etcd_deployment_type: host # optionally and mutually exclusive with etcd_kubeadm_enabled
```
[CRI-O]: https://cri-o.io/
roles/etcdctl/tasks/main.yml 0 → 100644
+ 59
0
View file @ 544aa00c
---
# To get the binary from container to host, use the etcd data directory mounted
# rw from host into the container.
- name: Check unintentional include of this role
assert:
that: etcd_kubeadm_enabled
- name: Check if etcdctl exist
stat:
path: "{{ bin_dir }}/etcdctl"
register: stat_etcdctl
- block:
- name: Check version
command: "{{ bin_dir }}/etcdctl version"
register: etcdctl_version
check_mode: no
changed_when: false
- name: Remove old binary if version is not OK
file:
path: "{{ bin_dir }}/etcdctl"
state: absent
when: etcd_version.lstrip('v') not in etcdctl_version.stdout
when: stat_etcdctl.stat.exists
- name: Check if etcdctl still exist after version check
stat:
path: "{{ bin_dir }}/etcdctl"
register: stat_etcdctl
- block:
- name: Copy etcdctl script to host
shell: "docker exec \"$(docker ps -qf ancestor={{ etcd_image_repo }}:{{ etcd_image_tag }})\" cp /usr/local/bin/etcdctl {{ etcd_data_dir }}"
when: container_manager == "docker"
- name: Copy etcdctl script to host
shell: "crictl exec \"$(crictl ps -q --image {{ etcd_image_repo }}:{{ etcd_image_tag }})\" cp /usr/local/bin/etcdctl {{ etcd_data_dir }}"
when: container_manager in ['crio', 'containerd']
- name: Copy etcdctl to {{ bin_dir }}
copy:
src: "{{ etcd_data_dir }}/etcdctl"
dest: "{{ bin_dir }}"
remote_src: true
mode: 0755
when: not stat_etcdctl.stat.exists
- name: Remove binary in etcd data dir
file:
path: "{{ etcd_data_dir }}/etcdctl"
state: absent
- name: Create etcdctl wrapper script
template:
src: etcdctl.sh.j2
dest: "{{ bin_dir }}/etcdctl.sh"
mode: 0755
roles/etcdctl/templates/etcdctl.sh.j2 0 → 100644
+ 8
0
View file @ 544aa00c
#!/bin/bash
# {{ ansible_managed }}
# example invocation: etcdctl.sh get --keys-only --from-key ""
etcdctl \
--cacert {{ kube_cert_dir }}/etcd/ca.crt \
--cert {{ kube_cert_dir }}/etcd/server.crt \
--key {{ kube_cert_dir }}/etcd/server.key "$@"
roles/kubernetes/master/tasks/kubeadm-etcd.yml
+ 7
2
View file @ 544aa00c
......@@ -16,7 +16,7 @@
include_tasks: "{{ role_path }}/../../etcd/tasks/install_host.yml"
vars:
etcd_cluster_setup: true
when: etcd_deployment_type == "host"
when: etcd_deployment_type == "host" and not etcd_kubeadm_enabled
- name: Ensure etcdctl binary is installed
include_tasks: "{{ role_path }}/../../etcd/tasks/install_etcdctl_docker.yml"
......@@ -24,4 +24,9 @@
etcd_cluster_setup: true
etcd_retries: 4
when:
- etcd_deployment_type == "docker"
- etcd_deployment_type == "docker" and not etcd_kubeadm_enabled
- name: Ensure etcdctl script is installed
import_role:
name: etcdctl
when: etcd_kubeadm_enabled
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment