From b188abf0b6be3b62f45951a6cb26cc6e107d3dd3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lucas=20Serv=C3=A9n=20Mar=C3=ADn?= Date: Mon, 11 May 2020 09:40:11 +0200 Subject: [PATCH] manifests: ensure ip6tables kernel module can load MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Fixes: #55 Signed-off-by: Lucas Servén Marín --- manifests/kilo-bootkube-flannel.yaml | 13 +++++++++++++ manifests/kilo-bootkube.yaml | 13 +++++++++++++ manifests/kilo-k3s-flannel.yaml | 13 +++++++++++++ manifests/kilo-k3s.yaml | 13 +++++++++++++ manifests/kilo-kubeadm-flannel.yaml | 13 +++++++++++++ manifests/kilo-kubeadm.yaml | 13 +++++++++++++ manifests/kilo-typhoon-flannel.yaml | 13 +++++++++++++ manifests/kilo-typhoon.yaml | 13 +++++++++++++ manifests/kube-router.yaml | 6 ++++++ 9 files changed, 110 insertions(+) diff --git a/manifests/kilo-bootkube-flannel.yaml b/manifests/kilo-bootkube-flannel.yaml index e979472..7492c87 100644 --- a/manifests/kilo-bootkube-flannel.yaml +++ b/manifests/kilo-bootkube-flannel.yaml @@ -85,6 +85,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes/kubeconfig readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false tolerations: - effect: NoSchedule operator: Exists @@ -97,3 +103,10 @@ spec: - name: kubeconfig hostPath: path: /etc/kubernetes/kubeconfig + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kilo-bootkube.yaml b/manifests/kilo-bootkube.yaml index a8d344b..2cd3a28 100644 --- a/manifests/kilo-bootkube.yaml +++ b/manifests/kilo-bootkube.yaml @@ -118,6 +118,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes/kubeconfig readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false initContainers: - name: install-cni image: squat/kilo @@ -161,3 +167,10 @@ spec: - name: kubeconfig hostPath: path: /etc/kubernetes/kubeconfig + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kilo-k3s-flannel.yaml b/manifests/kilo-k3s-flannel.yaml index 15fcb04..b257674 100644 --- a/manifests/kilo-k3s-flannel.yaml +++ b/manifests/kilo-k3s-flannel.yaml @@ -85,6 +85,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes/kubeconfig readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false tolerations: - effect: NoSchedule operator: Exists @@ -97,3 +103,10 @@ spec: - name: kubeconfig hostPath: path: /etc/rancher/k3s/k3s.yaml + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kilo-k3s.yaml b/manifests/kilo-k3s.yaml index f38d552..4c10176 100644 --- a/manifests/kilo-k3s.yaml +++ b/manifests/kilo-k3s.yaml @@ -118,6 +118,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes/kubeconfig readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false initContainers: - name: install-cni image: squat/kilo @@ -161,3 +167,10 @@ spec: - name: kubeconfig hostPath: path: /etc/rancher/k3s/k3s.yaml + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kilo-kubeadm-flannel.yaml b/manifests/kilo-kubeadm-flannel.yaml index f04b8dd..e25fef6 100644 --- a/manifests/kilo-kubeadm-flannel.yaml +++ b/manifests/kilo-kubeadm-flannel.yaml @@ -85,6 +85,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false tolerations: - effect: NoSchedule operator: Exists @@ -100,3 +106,10 @@ spec: items: - key: kubeconfig.conf path: kubeconfig + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kilo-kubeadm.yaml b/manifests/kilo-kubeadm.yaml index 960187d..562bb35 100644 --- a/manifests/kilo-kubeadm.yaml +++ b/manifests/kilo-kubeadm.yaml @@ -118,6 +118,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false initContainers: - name: install-cni image: squat/kilo @@ -164,3 +170,10 @@ spec: items: - key: kubeconfig.conf path: kubeconfig + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kilo-typhoon-flannel.yaml b/manifests/kilo-typhoon-flannel.yaml index eda038e..6891828 100644 --- a/manifests/kilo-typhoon-flannel.yaml +++ b/manifests/kilo-typhoon-flannel.yaml @@ -85,6 +85,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false tolerations: - effect: NoSchedule operator: Exists @@ -97,3 +103,10 @@ spec: - name: kubeconfig configMap: name: kubeconfig-in-cluster + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kilo-typhoon.yaml b/manifests/kilo-typhoon.yaml index 6c6c623..a704a56 100644 --- a/manifests/kilo-typhoon.yaml +++ b/manifests/kilo-typhoon.yaml @@ -118,6 +118,12 @@ spec: - name: kubeconfig mountPath: /etc/kubernetes readOnly: true + - name: lib-modules + mountPath: /lib/modules + readOnly: true + - name: xtables-lock + mountPath: /run/xtables.lock + readOnly: false initContainers: - name: install-cni image: squat/kilo @@ -161,3 +167,10 @@ spec: - name: kubeconfig configMap: name: kubeconfig-in-cluster + - name: lib-modules + hostPath: + path: /lib/modules + - name: xtables-lock + hostPath: + path: /run/xtables.lock + type: FileOrCreate diff --git a/manifests/kube-router.yaml b/manifests/kube-router.yaml index cca0245..c144d5d 100644 --- a/manifests/kube-router.yaml +++ b/manifests/kube-router.yaml @@ -37,6 +37,9 @@ spec: initialDelaySeconds: 10 periodSeconds: 3 volumeMounts: + - name: lib-modules + mountPath: /lib/modules + readOnly: true - name: xtables-lock mountPath: /run/xtables.lock readOnly: false @@ -51,6 +54,9 @@ spec: key: node.kubernetes.io/not-ready operator: Exists volumes: + - name: lib-modules + hostPath: + path: /lib/modules - name: xtables-lock hostPath: path: /run/xtables.lock