Skip to content

Instantly share code, notes, and snippets.

@kayrus

kayrus/pods.yaml Secret

Created September 13, 2019 11:47
Show Gist options
  • Save kayrus/31551685d523cbf84039c31ee6857366 to your computer and use it in GitHub Desktop.
Save kayrus/31551685d523cbf84039c31ee6857366 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
pods.yaml
apiVersion: v1
items:
- apiVersion: v1
kind: Pod
metadata:
annotations:
checksum/configmap-etcd-bootstrap-config: d60777257c12e302552376d84786eab7e038ebb99cb7e1609242a6cf8af3f1ae
checksum/secret-etcd-ca: 17bd58be7f7f194f500e095f63f2b6a8ce406c6fc55b6c45d097fe6cb6ed05ab
checksum/secret-etcd-client-tls: 51202bc75a4a2811ca1e6c9e18b57aa9ffb2a5c9da66f1e28d58a0437af96159
checksum/secret-etcd-server-tls: f30918e7ebc8a6111712bd87a009c7a41c09e36172796aafa623cb80739fe357
cni.projectcalico.org/podIP: 100.94.0.52/32
kubernetes.io/psp: gardener.privileged
creationTimestamp: "2019-09-13T11:35:24Z"
generateName: etcd-events-
labels:
app: etcd-statefulset
controller-revision-hash: etcd-events-54868fbcbd
garden.sapcloud.io/role: controlplane
networking.gardener.cloud/to-dns: allowed
networking.gardener.cloud/to-private-networks: allowed
networking.gardener.cloud/to-public-networks: allowed
role: events
statefulset.kubernetes.io/pod-name: etcd-events-0
name: etcd-events-0
namespace: shoot--garden--region1-01-dev
ownerReferences:
- apiVersion: apps/v1
blockOwnerDeletion: true
controller: true
kind: StatefulSet
name: etcd-events
uid: dd1b9c7f-3e05-4877-ae06-56f6de253ec3
resourceVersion: "20462759"
selfLink: /api/v1/namespaces/shoot--garden--region1-01-dev/pods/etcd-events-0
uid: 1d204600-3c01-4908-b4f1-3b8b88723d50
spec:
containers:
- command:
- /bootstrap/bootstrap.sh
image: quay.io/coreos/etcd:v3.3.13
imagePullPolicy: IfNotPresent
livenessProbe:
exec:
command:
- /bin/sh
- -ec
- ETCDCTL_API=3
- etcdctl
- --cert=/var/etcd/ssl/client/tls.crt
- --key=/var/etcd/ssl/client/tls.key
- --cacert=/var/etcd/ssl/ca/ca.crt
- --endpoints=https://etcd-events-0:2379
- get
- foo
failureThreshold: 3
initialDelaySeconds: 15
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 1
name: etcd
ports:
- containerPort: 2380
name: serverport
protocol: TCP
- containerPort: 2379
name: clientport
protocol: TCP
readinessProbe:
failureThreshold: 3
httpGet:
path: /healthz
port: 8080
scheme: HTTP
initialDelaySeconds: 5
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 1
resources:
limits:
cpu: 2500m
memory: 4Gi
requests:
cpu: 500m
memory: 1000Mi
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
volumeMounts:
- mountPath: /var/etcd/data
name: etcd-events
- mountPath: /bootstrap
name: etcd-bootstrap
- mountPath: /var/etcd/ssl/ca
name: ca-etcd
- mountPath: /var/etcd/ssl/server
name: etcd-server-tls
- mountPath: /var/etcd/ssl/client
name: etcd-client-tls
- mountPath: /var/run/secrets/kubernetes.io/serviceaccount
name: default-token-72bbf
readOnly: true
dnsPolicy: ClusterFirst
enableServiceLinks: true
hostname: etcd-events-0
nodeName: shoot--garden--soil-dev-cpu-worker-z1-7df97d997-65v6n
priority: 100
priorityClassName: gardener-shoot-controlplane
restartPolicy: Always
schedulerName: default-scheduler
securityContext: {}
serviceAccount: default
serviceAccountName: default
subdomain: etcd-events
terminationGracePeriodSeconds: 30
tolerations:
- effect: NoExecute
key: node.kubernetes.io/not-ready
operator: Exists
tolerationSeconds: 300
- effect: NoExecute
key: node.kubernetes.io/unreachable
operator: Exists
tolerationSeconds: 300
volumes:
- name: etcd-events
persistentVolumeClaim:
claimName: etcd-events-etcd-events-0
- configMap:
defaultMode: 356
name: etcd-bootstrap-events
name: etcd-bootstrap
- name: etcd-server-tls
secret:
defaultMode: 420
secretName: etcd-server-tls
- name: etcd-client-tls
secret:
defaultMode: 420
secretName: etcd-client-tls
- name: ca-etcd
secret:
defaultMode: 420
secretName: ca-etcd
- name: default-token-72bbf
secret:
defaultMode: 420
secretName: default-token-72bbf
status:
conditions:
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:24Z"
status: "True"
type: Initialized
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:24Z"
message: 'containers with unready status: [etcd]'
reason: ContainersNotReady
status: "False"
type: Ready
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:24Z"
message: 'containers with unready status: [etcd]'
reason: ContainersNotReady
status: "False"
type: ContainersReady
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:24Z"
status: "True"
type: PodScheduled
containerStatuses:
- containerID: docker://d412c505751d63eeabfd82062a5a6a5dd3c78148735330c80ddfb1991d3514d5
image: quay.io/coreos/etcd:v3.3.13
imageID: docker-pullable://quay.io/coreos/etcd@sha256:f8c9d9476458414ccad25a92524e788738386da109b06029a3b0c1a0d434d489
lastState: {}
name: etcd
ready: false
restartCount: 0
state:
running:
startedAt: "2019-09-13T11:35:34Z"
hostIP: 198.18.1.7
phase: Running
podIP: 100.94.0.52
qosClass: Burstable
startTime: "2019-09-13T11:35:24Z"
- apiVersion: v1
kind: Pod
metadata:
annotations:
checksum/configmap-etcd-bootstrap-config: 071d75f2ad5fceb47a291637dd9d828fd756157d241dcf0dcb350e59245142ef
checksum/secret-etcd-ca: 17bd58be7f7f194f500e095f63f2b6a8ce406c6fc55b6c45d097fe6cb6ed05ab
checksum/secret-etcd-client-tls: 51202bc75a4a2811ca1e6c9e18b57aa9ffb2a5c9da66f1e28d58a0437af96159
checksum/secret-etcd-server-tls: f30918e7ebc8a6111712bd87a009c7a41c09e36172796aafa623cb80739fe357
cni.projectcalico.org/podIP: 100.94.0.54/32
kubernetes.io/psp: gardener.privileged
creationTimestamp: "2019-09-13T11:35:18Z"
generateName: etcd-main-
labels:
app: etcd-statefulset
controller-revision-hash: etcd-main-5648cb7857
garden.sapcloud.io/role: controlplane
networking.gardener.cloud/to-dns: allowed
networking.gardener.cloud/to-private-networks: allowed
networking.gardener.cloud/to-public-networks: allowed
role: main
statefulset.kubernetes.io/pod-name: etcd-main-0
name: etcd-main-0
namespace: shoot--garden--region1-01-dev
ownerReferences:
- apiVersion: apps/v1
blockOwnerDeletion: true
controller: true
kind: StatefulSet
name: etcd-main
uid: fcc3cef6-0121-4a39-8cb0-53ea69f96777
resourceVersion: "20462994"
selfLink: /api/v1/namespaces/shoot--garden--region1-01-dev/pods/etcd-main-0
uid: 625b48a7-fcdd-4f34-8641-8aef1a0325be
spec:
containers:
- command:
- /bootstrap/bootstrap.sh
image: quay.io/coreos/etcd:v3.3.13
imagePullPolicy: IfNotPresent
livenessProbe:
exec:
command:
- /bin/sh
- -ec
- ETCDCTL_API=3
- etcdctl
- --cert=/var/etcd/ssl/client/tls.crt
- --key=/var/etcd/ssl/client/tls.key
- --cacert=/var/etcd/ssl/ca/ca.crt
- --endpoints=https://etcd-main-0:2379
- get
- foo
failureThreshold: 3
initialDelaySeconds: 15
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 1
name: etcd
ports:
- containerPort: 2380
name: serverport
protocol: TCP
- containerPort: 2379
name: clientport
protocol: TCP
readinessProbe:
failureThreshold: 3
httpGet:
path: /healthz
port: 8080
scheme: HTTP
initialDelaySeconds: 5
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 1
resources:
limits:
cpu: 2500m
memory: 4Gi
requests:
cpu: 500m
memory: 1000Mi
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
volumeMounts:
- mountPath: /var/etcd/data
name: main-etcd
- mountPath: /bootstrap
name: etcd-bootstrap
- mountPath: /var/etcd/ssl/ca
name: ca-etcd
- mountPath: /var/etcd/ssl/server
name: etcd-server-tls
- mountPath: /var/etcd/ssl/client
name: etcd-client-tls
- mountPath: /var/run/secrets/kubernetes.io/serviceaccount
name: default-token-72bbf
readOnly: true
dnsPolicy: ClusterFirst
enableServiceLinks: true
hostname: etcd-main-0
nodeName: shoot--garden--soil-dev-cpu-worker-z1-7df97d997-65v6n
priority: 100
priorityClassName: gardener-shoot-controlplane
restartPolicy: Always
schedulerName: default-scheduler
securityContext: {}
serviceAccount: default
serviceAccountName: default
subdomain: etcd-main
terminationGracePeriodSeconds: 30
tolerations:
- effect: NoExecute
key: node.kubernetes.io/not-ready
operator: Exists
tolerationSeconds: 300
- effect: NoExecute
key: node.kubernetes.io/unreachable
operator: Exists
tolerationSeconds: 300
volumes:
- name: main-etcd
persistentVolumeClaim:
claimName: main-etcd-etcd-main-0
- configMap:
defaultMode: 356
name: etcd-bootstrap-main
name: etcd-bootstrap
- name: etcd-server-tls
secret:
defaultMode: 420
secretName: etcd-server-tls
- name: etcd-client-tls
secret:
defaultMode: 420
secretName: etcd-client-tls
- name: ca-etcd
secret:
defaultMode: 420
secretName: ca-etcd
- name: default-token-72bbf
secret:
defaultMode: 420
secretName: default-token-72bbf
status:
conditions:
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:18Z"
status: "True"
type: Initialized
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:18Z"
message: 'containers with unready status: [etcd]'
reason: ContainersNotReady
status: "False"
type: Ready
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:18Z"
message: 'containers with unready status: [etcd]'
reason: ContainersNotReady
status: "False"
type: ContainersReady
- lastProbeTime: null
lastTransitionTime: "2019-09-13T11:35:18Z"
status: "True"
type: PodScheduled
containerStatuses:
- containerID: docker://f3675d2c1804f905152b1b89c2d027e60758a6e6317d5a862eb6d8826030dbec
image: quay.io/coreos/etcd:v3.3.13
imageID: docker-pullable://quay.io/coreos/etcd@sha256:f8c9d9476458414ccad25a92524e788738386da109b06029a3b0c1a0d434d489
lastState: {}
name: etcd
ready: false
restartCount: 0
state:
running:
startedAt: "2019-09-13T11:35:53Z"
hostIP: 198.18.1.7
phase: Running
podIP: 100.94.0.54
qosClass: Burstable
startTime: "2019-09-13T11:35:18Z"
kind: List
metadata:
resourceVersion: ""
selfLink: ""
Raw
statefulset.yaml
./ks -n shoot--garden--region1-01-dev get statefulset etcd-main -o yaml
apiVersion: apps/v1
kind: StatefulSet
metadata:
annotations:
cluster-autoscaler.kubernetes.io/safe-to-evict: "false"
creationTimestamp: "2019-08-21T16:02:12Z"
generation: 3
labels:
app: etcd-statefulset
garden.sapcloud.io/role: controlplane
role: main
name: etcd-main
namespace: shoot--garden--region1-01-dev
resourceVersion: "20462408"
selfLink: /apis/apps/v1/namespaces/shoot--garden--region1-01-dev/statefulsets/etcd-main
uid: fcc3cef6-0121-4a39-8cb0-53ea69f96777
spec:
podManagementPolicy: OrderedReady
replicas: 1
revisionHistoryLimit: 10
selector:
matchLabels:
app: etcd-statefulset
role: main
serviceName: etcd-main
template:
metadata:
annotations:
checksum/configmap-etcd-bootstrap-config: 071d75f2ad5fceb47a291637dd9d828fd756157d241dcf0dcb350e59245142ef
checksum/secret-etcd-ca: 17bd58be7f7f194f500e095f63f2b6a8ce406c6fc55b6c45d097fe6cb6ed05ab
checksum/secret-etcd-client-tls: 51202bc75a4a2811ca1e6c9e18b57aa9ffb2a5c9da66f1e28d58a0437af96159
checksum/secret-etcd-server-tls: f30918e7ebc8a6111712bd87a009c7a41c09e36172796aafa623cb80739fe357
creationTimestamp: null
labels:
app: etcd-statefulset
garden.sapcloud.io/role: controlplane
networking.gardener.cloud/to-dns: allowed
networking.gardener.cloud/to-private-networks: allowed
networking.gardener.cloud/to-public-networks: allowed
role: main
spec:
containers:
- command:
- /bootstrap/bootstrap.sh
image: quay.io/coreos/etcd:v3.3.13
imagePullPolicy: IfNotPresent
livenessProbe:
exec:
command:
- /bin/sh
- -ec
- ETCDCTL_API=3
- etcdctl
- --cert=/var/etcd/ssl/client/tls.crt
- --key=/var/etcd/ssl/client/tls.key
- --cacert=/var/etcd/ssl/ca/ca.crt
- --endpoints=https://etcd-main-0:2379
- get
- foo
failureThreshold: 3
initialDelaySeconds: 15
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 1
name: etcd
ports:
- containerPort: 2380
name: serverport
protocol: TCP
- containerPort: 2379
name: clientport
protocol: TCP
readinessProbe:
failureThreshold: 3
httpGet:
path: /healthz
port: 8080
scheme: HTTP
initialDelaySeconds: 5
periodSeconds: 5
successThreshold: 1
timeoutSeconds: 1
resources:
limits:
cpu: 2500m
memory: 4Gi
requests:
cpu: 500m
memory: 1000Mi
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
volumeMounts:
- mountPath: /var/etcd/data
name: main-etcd
- mountPath: /bootstrap
name: etcd-bootstrap
- mountPath: /var/etcd/ssl/ca
name: ca-etcd
- mountPath: /var/etcd/ssl/server
name: etcd-server-tls
- mountPath: /var/etcd/ssl/client
name: etcd-client-tls
dnsPolicy: ClusterFirst
priorityClassName: gardener-shoot-controlplane
restartPolicy: Always
schedulerName: default-scheduler
securityContext: {}
terminationGracePeriodSeconds: 30
volumes:
- configMap:
defaultMode: 356
name: etcd-bootstrap-main
name: etcd-bootstrap
- name: etcd-server-tls
secret:
defaultMode: 420
secretName: etcd-server-tls
- name: etcd-client-tls
secret:
defaultMode: 420
secretName: etcd-client-tls
- name: ca-etcd
secret:
defaultMode: 420
secretName: ca-etcd
updateStrategy:
type: RollingUpdate
volumeClaimTemplates:
- metadata:
creationTimestamp: null
name: main-etcd
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 25Gi
storageClassName: gardener.cloud-fast
volumeMode: Filesystem
status:
phase: Pending
status:
collisionCount: 0
currentRevision: etcd-main-7664965464
observedGeneration: 3
replicas: 1
updateRevision: etcd-main-5648cb7857
updatedReplicas: 1
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment