diff --git a/README.md b/README.md index a6d06de660f..067ee78c86d 100644 --- a/README.md +++ b/README.md @@ -125,13 +125,7 @@ E.g. : Raspberry Ubuntu Preinstalled server uses u-boot, then in ssh session run sed "$ s/$/ cgroup_enable=cpuset cgroup_enable=memory cgroup_memory=1/" /boot/firmware/cmdline.txt | sudo tee /boot/firmware/cmdline.txt reboot -I see the msg: "Timed out (12s) waiting for privileges escalation" - -The ansible_user or --become_user must gain root privileges without password prompt. That's simply to edit the sudoers and add NOPASSWD: ALL to %admin and %sudo user group. E.g. from ansible host shell : - - ssh @ 'sudo visudo; sudo reboot' - -- I may not be able to build a playbook on Arm, armv7l architectures Issues with systems such as Rasbian 9 and the Raspberries first and second generation. There's [some issue](kubernetes-sigs/kubespray#4261) to obtain 32 bits binary compatibility on those systems. Please post a comment if you find a way to enable 32 bits support for the k8s stack. +- I may not be able to build a playbook on Arm, armv7l architectures Issues with systems such as Rasbian 9 and the Raspberries first and second generation. There's [some issue](http://github.com/kubernetes-sigs/kubespray/issues/4261) to obtain 32 bits binary compatibility on those systems. Please post a comment if you find a way to enable 32 bits support for the k8s stack. - Kubeadm 1.10.1 known to feature arm64 binary in googlestorage.io @@ -173,9 +167,8 @@ If you don't know how much memory's available for the master host kubernetes-app # Ctrl-C to stop monitoring - Timeout (12s) waiting for privilege escalation prompt -There's a problem with the remote shell configuration, try to reboot the remote host, wait for 30 seconds and retry the command which you started before. - - ssh $PI@$pi sudo reboot +Try increasing the timeout settings, you may want to run ansible with + ``--timeout=45`` and add ``--ask-become-pass`` (that's asking sudo password). If the error still happens, the ansible roles/ specific TASK configuration should set up the privileges escalation. Please contact the system administrator and [fill in an issue](https://github.com/kubernetes-sigs/kubespray/issues) about the TASK that must be fixed up. diff --git a/inventory/sample/group_vars/k8s-cluster/k8s-cluster.yml b/inventory/sample/group_vars/k8s-cluster/k8s-cluster.yml index c8546e4f4f9..ccd076405c5 100644 --- a/inventory/sample/group_vars/k8s-cluster/k8s-cluster.yml +++ b/inventory/sample/group_vars/k8s-cluster/k8s-cluster.yml @@ -71,7 +71,7 @@ kube_users: # Choose network plugin (cilium, calico, contiv, weave or flannel) # Can also be set to 'cloud', which lets the cloud provider setup appropriate routing -kube_network_plugin: flannel +kube_network_plugin: weave # Setting multi_networking to true will install Multus: https://github.com/intel/multus-cni kube_network_plugin_multus: false diff --git a/roles/bootstrap-os/tasks/main.yml b/roles/bootstrap-os/tasks/main.yml index a1a3bb94652..5410616682f 100644 --- a/roles/bootstrap-os/tasks/main.yml +++ b/roles/bootstrap-os/tasks/main.yml @@ -1,5 +1,6 @@ --- - name: Fetch /etc/os-release + become: yes raw: cat /etc/os-release register: os_release changed_when: false diff --git a/roles/reset/tasks/main.yml b/roles/reset/tasks/main.yml index 2bc48db8da4..7193294ede4 100644 --- a/roles/reset/tasks/main.yml +++ b/roles/reset/tasks/main.yml @@ -8,6 +8,7 @@ - network - name: reset | stop services + become: yes service: name: "{{ item }}" state: stopped diff --git a/scripts/gen_crt_pem.sh b/scripts/gen_crt_pem.sh new file mode 100755 index 00000000000..28a31b0a2a2 --- /dev/null +++ b/scripts/gen_crt_pem.sh @@ -0,0 +1,2 @@ +#!/usr/bin/env bash +[ "$#" -gt 0 ] && [ -f $1.crt ] && openssl x509 -in $1.crt -out $1.pem -outform PEM && cat $1.pem || echo "Usage: $0 " diff --git a/scripts/setup_playbook.sh b/scripts/setup_playbook.sh index e350067e6f0..bb4d7a624bb 100755 --- a/scripts/setup_playbook.sh +++ b/scripts/setup_playbook.sh @@ -32,7 +32,7 @@ function setup_firewall() { esac; shift; done } inventory='inventory/mycluster/hosts.ini' -defaults='-b -v --private-key=~/.ssh/id_rsa' +defaults='-b --private-key=~/.ssh/id_rsa --ask-become-pass' options="" usage="Usage: $0 [-i,--inventory ] [ansible-playbook options]" usage2="Usage: $0 --crio-setup|--firewall-setup @" @@ -55,7 +55,7 @@ while [ "$#" -gt 0 ]; do case $1 in -h*|--help) echo $usage echo $usage2;; - -b*|-v*|--private-key*) + -b*|--private-key*) options="${options} $1" defaults="";; *) options="${options} $1";;