-
Notifications
You must be signed in to change notification settings - Fork 19
/
Copy pathdocker-compose.yml
112 lines (112 loc) · 3.27 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
etcd:
hostname: etcd
image: gcr.io/google_containers/etcd-amd64:3.0.4
ports: [ "4001:4001" ]
command: >
/usr/local/bin/etcd
--listen-client-urls 'http://etcd:4001'
--advertise-client-urls 'http://etcd:4001'
--initial-cluster-state new
node:
hostname: node
privileged: true
image: k8s.io/kubernetes-dind
ports: [ "10248","10249" ]
entrypoint:
- bash
- -xc
- >
NAME=$$(cut -f2 -d/ <<<$${APISERVER_1_NAME}) &&
N=$${NAME##*_} &&
hostname $$(echo $${NAME} | tr _ -) &&
HOSTNAME_OVERRIDE=$$(getent hosts node | cut -d' ' -f1 | sort -u | tail -1) &&
DOCKER_NETWORK_OFFSET=0.0.$${N}.0
exec wrapdocker bash -c "
hyperkube kubelet
--hostname-override=$${HOSTNAME_OVERRIDE}
--node-labels="rack=$${N},gen=201$${N}"
--api-servers=http://apiserver:8888
--allow-privileged
--cluster-dns=${DNS_SERVER_IP}
--cluster-domain=${DNS_DOMAIN}
--config=/var/lib/kubelet/manifests
--v=5 2>&1 | sed 's/^/kubelet: /' 1>&2 &
hyperkube proxy
--hostname-override=$${HOSTNAME_OVERRIDE}
--master=http://apiserver:8888
--cluster-cidr=\$$(ip addr show docker0 | grep -w inet | awk '{ print \$$2; }')
--masquerade-all
--conntrack-max=0
--conntrack-max-per-core=0
--v=4 2>&1 | sed 's/^/proxy: /' 1>&2 &
wait \$$(jobs -p)
"
command: []
environment:
- VAR_LIB_DOCKER_SIZE=10
- DOCKER_DAEMON_ARGS
volumes:
- ${DOCKER_IN_DOCKER_STORAGE_DIR}:/var/lib/docker
links:
- apiserver
apiserver:
hostname: apiserver
image: k8s.io/kubernetes-dind
ports: [6443]
entrypoint:
- /bin/bash
- "-cxeu"
- >
echo "Hostname: $$(hostname -f) ($$(hostname -f | xargs resolveip.sh))" &&
hyperkube apiserver
--insecure-bind-address=$$(resolveip.sh apiserver)
--external-hostname=apiserver
--etcd-servers=http://etcd:4001
--insecure-port=8888
--admission-control=NamespaceLifecycle,LimitRanger,ServiceAccount,ResourceQuota,PersistentVolumeLabel
--authorization-mode=AlwaysAllow
--token-auth-file=/var/run/kubernetes/auth/token-users
--basic-auth-file=/var/run/kubernetes/auth/basic-users
--service-account-key-file=/var/run/kubernetes/auth/service-accounts-key.pem
--service-cluster-ip-range=${SERVICE_CIDR}
--service-node-port-range=30000-32767
--allow-privileged
--tls-cert-file=/var/run/kubernetes/auth/apiserver-bundle.pem
--tls-private-key-file=/var/run/kubernetes/auth/apiserver-key.pem
--runtime-config=api/all
--v=4
ports: [ "8888:8888", "6443:6443" ]
volumes:
- ${DOCKER_IN_DOCKER_WORK_DIR}/auth:/var/run/kubernetes/auth:ro
links:
- etcd
controller:
hostname: controller
image: k8s.io/kubernetes-dind
entrypoint:
- /bin/bash
- "-ceu"
- >
hyperkube controller-manager
--address=$$(resolveip.sh controller)
--master=http://apiserver:8888
--service-account-private-key-file=/var/run/kubernetes/auth/service-accounts-key.pem
--root-ca-file=/var/run/kubernetes/auth/ca.pem
--v=4
volumes:
- ${DOCKER_IN_DOCKER_WORK_DIR}/auth:/var/run/kubernetes/auth:ro
links:
- apiserver
scheduler:
hostname: scheduler
image: k8s.io/kubernetes-dind
entrypoint:
- /bin/bash
- "-ceu"
- >
hyperkube scheduler
--address=$$(resolveip.sh scheduler)
--master=http://apiserver:8888
--v=4
links:
- apiserver