mirror of
https://github.com/siderolabs/talos.git
synced 2025-08-26 17:11:19 +02:00
ae77d6e053
This reworks a bunch of the formatting for the userdata generation to output a cleaner talos config when using IPv6 masters and `osctl config generate`. Please note that this changes the scope of concern for master indexing, keeping `osctl` blissfully unaware of the master-reference chaining. All it does is report the index of the master it is trying to generate. The generator itself handles the reference chaining. Fixes #916, fixes #917, and fixes #918 Signed-off-by: Seán C McCord <ulexus@gmail.com>
72 lines
2.1 KiB
Go
72 lines
2.1 KiB
Go
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
|
|
package generate
|
|
|
|
const initTempl = `#!talos
|
|
version: ""
|
|
security:
|
|
os:
|
|
ca:
|
|
crt: "{{ .Certs.OsCert }}"
|
|
key: "{{ .Certs.OsKey }}"
|
|
kubernetes:
|
|
ca:
|
|
crt: "{{ .Certs.K8sCert }}"
|
|
key: "{{ .Certs.K8sKey }}"
|
|
services:
|
|
init:
|
|
cni: flannel
|
|
kubeadm:
|
|
initToken: {{ .InitToken }}
|
|
certificateKey: '{{ .KubeadmTokens.CertKey }}'
|
|
configuration: |
|
|
apiVersion: kubeadm.k8s.io/v1beta1
|
|
kind: InitConfiguration
|
|
bootstrapTokens:
|
|
- token: '{{ .KubeadmTokens.BootstrapToken }}'
|
|
ttl: 0s
|
|
nodeRegistration:
|
|
taints: []
|
|
kubeletExtraArgs:
|
|
node-labels: ""
|
|
---
|
|
apiVersion: kubeadm.k8s.io/v1beta1
|
|
kind: ClusterConfiguration
|
|
clusterName: {{ .ClusterName }}
|
|
kubernetesVersion: {{ .KubernetesVersion }}
|
|
controlPlaneEndpoint: "{{ .GetControlPlaneEndpoint "443" }}"
|
|
apiServer:
|
|
certSANs: [ {{ range $i,$ip := .MasterIPs }}{{if $i}},{{end}}"{{$ip}}"{{end}}, "127.0.0.1", "::1" ]
|
|
extraArgs:
|
|
runtime-config: settings.k8s.io/v1alpha1=true
|
|
feature-gates: ExperimentalCriticalPodAnnotation=true
|
|
controllerManager:
|
|
extraArgs:
|
|
terminated-pod-gc-threshold: '100'
|
|
feature-gates: ExperimentalCriticalPodAnnotation=true
|
|
scheduler:
|
|
extraArgs:
|
|
feature-gates: ExperimentalCriticalPodAnnotation=true
|
|
networking:
|
|
dnsDomain: {{ .ServiceDomain }}
|
|
podSubnet: "{{ index .PodNet 0 }}"
|
|
serviceSubnet: "{{ index .ServiceNet 0 }}"
|
|
---
|
|
apiVersion: kubelet.config.k8s.io/v1beta1
|
|
kind: KubeletConfiguration
|
|
featureGates:
|
|
ExperimentalCriticalPodAnnotation: true
|
|
---
|
|
apiVersion: kubeproxy.config.k8s.io/v1alpha1
|
|
kind: KubeProxyConfiguration
|
|
mode: ipvs
|
|
ipvs:
|
|
scheduler: lc
|
|
trustd:
|
|
token: '{{ .TrustdInfo.Token }}'
|
|
endpoints: [ {{ .Endpoints }} ]
|
|
certSANs: [ "{{ .IP }}", "127.0.0.1", "::1" ]
|
|
`
|