Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs
base: e09be192753c
Choose a base ref
...
head repository: NixOS/nixpkgs
compare: 2935a67eb946
Choose a head ref
  • 10 commits
  • 22 files changed
  • 4 contributors

Commits on Feb 20, 2019

  1. nixos/kubernetes: major module refactor

    - All kubernetes components have been seperated into different files
    - All TLS-enabled ports have been deprecated and disabled by default
    - EasyCert option added to support automatic cluster PKI-bootstrap
    - RBAC has been enforced for all cluster components by default
    - NixOS kubernetes test cases make use of easyCerts to setup PKI
    Johan Thomsen authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    e2380e7 View commit details
    Browse the repository at this point in the history
  2. nixos/kubernetes: adding manual section for kubernetes and writing re…

    …lease note for NixOS 19.03
    Johan Thomsen authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    8d62d79 View commit details
    Browse the repository at this point in the history
  3. nixos/kubernetes: use the certmgr-selfsigned variant

    Johan Thomsen authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    6334796 View commit details
    Browse the repository at this point in the history
  4. nixos/kubernetes: CoreDNS privileges has to be assigned by addon mana…

    …ger bootstrap
    
    - because the kube-addon-manager drops most of its privileges after
    startup.
    Johan Thomsen authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    1f49c21 View commit details
    Browse the repository at this point in the history
  5. nixos/kubernetes: let flannel use kubernetes as storage backend

    + isolate etcd on the master node by letting it listen only on loopback
    + enabling kubelet on master and taint master with NoSchedule
    
    The reason for the latter is that flannel requires all nodes to be "registered"
    in the cluster in order to setup the cluster network. This means that the
    kubelet is needed even at nodes on which we don't plan to schedule anything.
    Johan Thomsen authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    466beb0 View commit details
    Browse the repository at this point in the history
  6. nixos/kubernetes: use system.path to handle dependency on flannel sub…

    …net.env
    
    The current postStart step on flannel causes flannel.service to
    sometimes hang, even when it's commanded to stop.
    Johan Thomsen authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    7028fac View commit details
    Browse the repository at this point in the history
  7. nixos/kubernetes: (test) Fix race-condition in test cases. docker loa…

    …d might fail due to dockerd restarting
    Johan Thomsen authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    6045068 View commit details
    Browse the repository at this point in the history
  8. nixos/kubernetes: bootstrap docker without networking

    Before flannel is ready there is a brief time where docker will be
    running with a default docker0 bridge. If kubernetes happens to spawn
    containers before flannel is ready, docker can't be restarted when
    flannel is ready because some containers are still running on the
    docker0 bridge with potentially different network addresses.
    
    Environment variables in `EnvironmentFile` override those defined via
    `Environment` in the systemd service config.
    
    Co-authored-by: Christian Albrecht <christian.albrecht@mayflower.de>
    fpletz and calbrecht committed Feb 20, 2019
    Copy the full SHA
    3a02205 View commit details
    Browse the repository at this point in the history
  9. nixos/kubernetes: fix flannel and kubelet startup

    Jaka Hudoklin authored and fpletz committed Feb 20, 2019
    Copy the full SHA
    97a27fd View commit details
    Browse the repository at this point in the history
  10. Merge pull request #45670 from johanot/kubernetes-1.11

    nixos/kubernetes: Module refactor
    fpletz committed Feb 20, 2019
    Copy the full SHA
    2935a67 View commit details
    Browse the repository at this point in the history