This repository has been archived by the owner on Jan 11, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 560
1.12 uses coredns #3987
Merged
jackfrancis
merged 9 commits into
Azure:master
from
jackfrancis:e2e-kubernetes.default.svc
Oct 11, 2018
Merged
1.12 uses coredns #3987
Changes from all commits
Commits
Show all changes
9 commits
Select commit
Hold shift + click to select a range
0faa159
initial coredns implementation
jackfrancis fc5317a
this is the upstream coredns yaml example
jackfrancis f7789ec
one more substitution
jackfrancis e4cfd1a
update tests
jackfrancis 579f959
Add DNS autoscaler
jackfrancis bc2d607
restore old container networking test for < 1.12.0
jackfrancis e80e2c1
redundant error checks
jackfrancis 6ede434
disable dns-autoscaler
jackfrancis 06e7d0c
stop running stability tests by default
jackfrancis File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,183 @@ | ||
# Warning: This is a file generated from the base underscore template file: coredns.yaml.base | ||
|
||
apiVersion: v1 | ||
kind: ServiceAccount | ||
metadata: | ||
name: coredns | ||
namespace: kube-system | ||
labels: | ||
kubernetes.io/cluster-service: "true" | ||
addonmanager.kubernetes.io/mode: Reconcile | ||
--- | ||
apiVersion: rbac.authorization.k8s.io/v1 | ||
kind: ClusterRole | ||
metadata: | ||
labels: | ||
kubernetes.io/bootstrapping: rbac-defaults | ||
addonmanager.kubernetes.io/mode: Reconcile | ||
name: system:coredns | ||
rules: | ||
- apiGroups: | ||
- "" | ||
resources: | ||
- endpoints | ||
- services | ||
- pods | ||
- namespaces | ||
verbs: | ||
- list | ||
- watch | ||
--- | ||
apiVersion: rbac.authorization.k8s.io/v1 | ||
kind: ClusterRoleBinding | ||
metadata: | ||
annotations: | ||
rbac.authorization.kubernetes.io/autoupdate: "true" | ||
labels: | ||
kubernetes.io/bootstrapping: rbac-defaults | ||
addonmanager.kubernetes.io/mode: EnsureExists | ||
name: system:coredns | ||
roleRef: | ||
apiGroup: rbac.authorization.k8s.io | ||
kind: ClusterRole | ||
name: system:coredns | ||
subjects: | ||
- kind: ServiceAccount | ||
name: coredns | ||
namespace: kube-system | ||
--- | ||
apiVersion: v1 | ||
kind: ConfigMap | ||
metadata: | ||
name: coredns | ||
namespace: kube-system | ||
labels: | ||
addonmanager.kubernetes.io/mode: EnsureExists | ||
data: | ||
Corefile: | | ||
.:53 { | ||
errors | ||
health | ||
kubernetes <kubernetesKubeletClusterDomain> in-addr.arpa ip6.arpa { | ||
pods insecure | ||
upstream | ||
fallthrough in-addr.arpa ip6.arpa | ||
} | ||
prometheus :9153 | ||
proxy . /etc/resolv.conf | ||
cache 30 | ||
loop | ||
reload | ||
loadbalance | ||
} | ||
--- | ||
apiVersion: extensions/v1beta1 | ||
kind: Deployment | ||
metadata: | ||
name: coredns | ||
namespace: kube-system | ||
labels: | ||
k8s-app: kube-dns | ||
kubernetes.io/cluster-service: "true" | ||
addonmanager.kubernetes.io/mode: Reconcile | ||
kubernetes.io/name: "CoreDNS" | ||
spec: | ||
# replicas: not specified here: | ||
# 1. In order to make Addon Manager do not reconcile this replicas parameter. | ||
# 2. Default is 1. | ||
# 3. Will be tuned in real time if DNS horizontal auto-scaling is turned on. | ||
strategy: | ||
type: RollingUpdate | ||
rollingUpdate: | ||
maxUnavailable: 1 | ||
selector: | ||
matchLabels: | ||
k8s-app: kube-dns | ||
template: | ||
metadata: | ||
labels: | ||
k8s-app: kube-dns | ||
annotations: | ||
seccomp.security.alpha.kubernetes.io/pod: 'docker/default' | ||
spec: | ||
serviceAccountName: coredns | ||
tolerations: | ||
- key: node-role.kubernetes.io/master | ||
effect: NoSchedule | ||
- key: "CriticalAddonsOnly" | ||
operator: "Exists" | ||
containers: | ||
- name: coredns | ||
image: <kubernetesCoreDNSSpec> | ||
imagePullPolicy: IfNotPresent | ||
resources: | ||
limits: | ||
memory: 170Mi | ||
requests: | ||
cpu: 100m | ||
memory: 70Mi | ||
args: [ "-conf", "/etc/coredns/Corefile" ] | ||
volumeMounts: | ||
- name: config-volume | ||
mountPath: /etc/coredns | ||
readOnly: true | ||
ports: | ||
- containerPort: 53 | ||
name: dns | ||
protocol: UDP | ||
- containerPort: 53 | ||
name: dns-tcp | ||
protocol: TCP | ||
- containerPort: 9153 | ||
name: metrics | ||
protocol: TCP | ||
livenessProbe: | ||
httpGet: | ||
path: /health | ||
port: 8080 | ||
scheme: HTTP | ||
initialDelaySeconds: 60 | ||
timeoutSeconds: 5 | ||
successThreshold: 1 | ||
failureThreshold: 5 | ||
securityContext: | ||
allowPrivilegeEscalation: false | ||
capabilities: | ||
add: | ||
- NET_BIND_SERVICE | ||
drop: | ||
- all | ||
readOnlyRootFilesystem: true | ||
dnsPolicy: Default | ||
volumes: | ||
- name: config-volume | ||
configMap: | ||
name: coredns | ||
items: | ||
- key: Corefile | ||
path: Corefile | ||
--- | ||
apiVersion: v1 | ||
kind: Service | ||
metadata: | ||
name: kube-dns | ||
namespace: kube-system | ||
annotations: | ||
prometheus.io/port: "9153" | ||
prometheus.io/scrape: "true" | ||
labels: | ||
k8s-app: kube-dns | ||
kubernetes.io/cluster-service: "true" | ||
addonmanager.kubernetes.io/mode: Reconcile | ||
kubernetes.io/name: "CoreDNS" | ||
spec: | ||
selector: | ||
k8s-app: kube-dns | ||
clusterIP: <kubeDNSServiceIP> | ||
ports: | ||
- name: dns | ||
port: 53 | ||
protocol: UDP | ||
- name: dns-tcp | ||
port: 53 | ||
protocol: TCP |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,35 @@ | ||
apiVersion: apps/v1 | ||
kind: Deployment | ||
metadata: | ||
name: dns-autoscaler | ||
namespace: kube-system | ||
labels: | ||
k8s-app: dns-autoscaler | ||
kubernetes.io/cluster-service: "true" | ||
addonmanager.kubernetes.io/mode: Reconcile | ||
spec: | ||
selector: | ||
matchLabels: | ||
k8s-app: dns-autoscaler | ||
template: | ||
metadata: | ||
labels: | ||
k8s-app: dns-autoscaler | ||
spec: | ||
containers: | ||
- name: autoscaler | ||
image: k8s.gcr.io/cluster-proportional-autoscaler-amd64:1.1.1 | ||
resources: | ||
requests: | ||
cpu: "20m" | ||
memory: "10Mi" | ||
command: | ||
- /cluster-proportional-autoscaler | ||
- --namespace=kube-system | ||
- --configmap=dns-autoscaler | ||
- --target=Deployment/coredns | ||
# When cluster is using large nodes(with more cores), "coresPerReplica" should dominate. | ||
# If using small nodes, "nodesPerReplica" should dominate. | ||
- --default-params={"linear":{"coresPerReplica":256,"nodesPerReplica":16,"min":1}} | ||
- --logtostderr=true | ||
- --v=2 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Does this belong in the K8sConfigComponentVersion Map :P ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We'll do it later to make your rebase easier :)