Install containerd and kubeadm

2022-11-12 02:38:39 -05:00
commit d4fe1f6667
7 changed files with 178 additions and 0 deletions
--- a/scripts/provision.sh
+++ b/scripts/provision.sh
@@ -0,0 +1,73 @@
+#!/bin/bash
+
+################
+### Settings ###
+################
+
+set -x
+DEBIAN_FRONTEND=noninteractive
+KEYRING_PATH="/usr/share/keyrings/kubernetes-archive-keyring.gpg"
+KEYRING_URL="https://packages.cloud.google.com/apt/doc/apt-key.gpg"
+
+#########################################################
+### Install containerd, kubeadm, kubelet, and kubectl ###
+#########################################################
+
+# Install prerequsite packages
+apt-get install -y apt-transport-https ca-certificates curl
+
+# Install Google Cloud public signing key
+curl -fsSLo "$KEYRING_PATH" "$KEYRING_URL"
+if [ ! -f /etc/sysctl.d/keepalived.conf ]; then
+cat <<- EOF | tee /etc/apt/sources.list.d/kubernetes.list
+	deb [signed-by=${KEYRING_PATH}] https://apt.kubernetes.io/ kubernetes-xenial main
+	EOF
+fi
+
+# Update package index and install
+apt-get update
+apt-get install -y containerd kubelet kubeadm kubectl
+apt-mark hold kubelet kubeadm kubectl
+
+# Forwarding IPv4 and letting iptables see bridged traffic
+if [ ! -f /etc/modules-load.d/k8s.conf ]; then
+	cat <<- EOF | tee /etc/modules-load.d/k8s.conf
+	overlay
+	br_netfilter
+	EOF
+
+	modprobe overlay
+	modprobe br_netfilter
+fi
+
+# sysctl params required by setup, params persist across reboots
+if [ ! -f /etc/sysctl.d/k8s.conf ]; then
+	cat <<- EOF | tee /etc/sysctl.d/k8s.conf
+	net.bridge.bridge-nf-call-iptables  = 1
+	net.bridge.bridge-nf-call-ip6tables = 1
+	net.ipv4.ip_forward                 = 1
+	EOF
+
+	sudo sysctl --system
+fi
+
+# Prevent further execution until floating IP is found (not a failure)
+if [ ! -f /vagrant/.k8s-ips ]; then
+	echo "NOTICE: /vagrant/.k8s-ips not found"
+	echo "NOTICE: Rerun 'vagrant provision' after running vagrant-ips.sh"
+	exit 0
+fi
+
+##########################################
+### Install keepalived for floating IP ###
+##########################################
+
+apt-get update
+apt-get install -y keepalived
+
+if [ ! -f /etc/sysctl.d/keepalived.conf ]; then
+	cat <<- EOF | tee /etc/sysctl.d/keepalived.conf
+	net.ipv4.ip_nonlocal_bind = 1
+	EOF
+	sysctl -p
+fi
--- a/scripts/vagrant-ips.sh
+++ b/scripts/vagrant-ips.sh
@@ -0,0 +1,39 @@
+#!/bin/bash
+set -x
+
+# IPs file already exist
+if [ -f .k8s-ips ]; then
+	echo "NOTICE: .k8s-ips already exists"
+	exit 0
+fi
+
+# Create file with vagrant-k8s private DHCP IPs
+echo "declare -a K8S_NODES" > .k8s-ips
+for i in {1..3}; do
+	IP=$(vagrant ssh "node$i" -c "hostname -I | cut -d' ' -f2" 2>/dev/null)
+	echo "K8S_NODES[$i]=$IP" >> .k8s-ips
+done
+
+# Source new IP file
+# shellcheck disable=SC1091
+source .k8s-ips
+
+# Grab last octet on IP addresses (assuming /24)
+last_octets=()
+for i in {1..3}; do
+	last_octets+=("$(echo "${K8S_NODES[$i]}" | rev | cut -d. -f1 | rev)")
+done
+
+# Generate random octet and ensure it's not taken
+while true
+do
+	available=true
+	random_octet="$(shuf -i2-254 -n1)"
+	for i in "${last_octets[@]}"; do
+		[ "$random_octet" == "${i::-1}" ] && available=false
+	done
+	[ "$available" == true ] && break
+done
+
+# Add keepalived IP address in order
+sed -i "/declare/a K8S_NODES[0]=${K8S_NODES[1]%.*}.$random_octet" .k8s-ips