starlingx/stx-puppet
Code Issues Proposed changes
1,990 Commits 19 Branches 26 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Ramesh Kumar Sivanandam be1d47c726 Backwards compatible Kubernetes admin.conf ownership and permission 
Kubernetes 1.29 now deploys new 'super-admin.conf' and new RBAC Group
kubeadm:cluster-admins. The ownership and permission and association
with RBAC group of 'admin.conf' is changed, so K8s control-plane
upgrade and abort upgrade operations of 1.29 modifies the ownership
and permissions.

This workaround resets the ownership and permissions of the
admin.conf file to retain backwards compatibility. This may have
to be addressed differently in future.

Without this change, kubectl commands no longer work due to
insufficient permissions after K8s control-plane upgrade or
abort upgrade of 1.29.

Test Plan:
PASS: Install ISO with K8s 1.29 on AIO-SX.
PASS: Install ISO with K8s 1.29 on AIO-SX and perform the BnR.
PASS: Ansible bootstrap replay on K8s 1.29
PASS: Install ISO with K8s 1.28 on AIO-SX, upgrade to 1.29
PASS: Install ISO with K8s 1.28 on AIO-SX, upgrade to 1.29 and
      perform the BnR.
PASS: Install ISO with K8s 1.28 on AIO-SX, abort upgrade to 1.29.
PASS: Install ISO with K8s 1.29 on AIO-DX.
PASS: Install ISO with K8s 1.29 on AIO-DX and perform the BnR.
PASS: Install ISO with K8s 1.28 on AIO-DX, upgrade to 1.29
PASS: Verify that "kubectl get pods -n kube-system" works as expected
      after the K8s upgrade and abort upgrade operations.
PASS: Manually hardcode to fail kube-upgrade-abort and verify backup
      of admin.conf and super-admin.conf files restored successfully.
PASS: Lock/unlock the host after modify the permission of Kubernetes
      admin.conf and verify permissions are reset correctly.

Story: 2011047
Task: 49793

Change-Id: I1d410cb1e638b94bcc965dd43dd0e8f032401ade
Signed-off-by: Ramesh Kumar Sivanandam <rameshkumar.sivanandam@windriver.com>
2024-05-27 21:54:22 -04:00
modules
Remove CentOS/OpenSUSE build support
2024-04-26 14:16:56 -04:00
playbooks/tox-puppet-lint
tox/zuul: Set puppetlabs_spec_helper version to 6.0.3
2023-10-19 18:56:46 +00:00
puppet-manifests
Backwards compatible Kubernetes admin.conf ownership and permission
2024-05-27 21:54:22 -04:00
.gitignore
Adding zuul jobs for new repo
2019-09-09 14:52:12 -05:00
.gitreview
Add a .gitreview file to the new repo
2019-09-09 09:45:59 -05:00
.zuul.yaml
Fix github mirroring for this repo
2023-04-28 12:38:53 -04:00
bindep.txt
Add bindep target to tox
2021-02-19 12:14:38 -06:00
CONTRIBUTING.rst
Adding zuul jobs for new repo
2019-09-09 14:52:12 -05:00
debian_build_layer.cfg
Add debian_build_layer.cfg file
2021-10-05 14:12:38 -04:00
debian_iso_image.inc
stx-puppet: update debian_iso_image.inc
2022-12-06 08:44:31 +08:00
debian_pkg_dirs
Adding puppet-usm module
2023-07-20 15:45:19 +00:00
HACKING.rst
Adding zuul jobs for new repo
2019-09-09 14:52:12 -05:00
pylint.rc
Add pylint py3 portability checks for the stx-puppet repo
2021-09-13 17:24:43 +00:00
README.rst
starlingx/stx-puppet README improvement
2023-07-19 12:21:22 -03:00
requirements.txt
tox: Pin ruamel.yaml version to <0.18.0
2023-10-24 13:27:52 -03:00
test-requirements.txt
Calling an additional shell lint command from zuul
2021-06-03 09:42:07 -05:00
tox.ini
tox: Pin ruamel.yaml version to <0.18.0
2023-10-24 13:27:52 -03:00

README.rst

stx-puppet

The starlingx/stx-puppet repository handles the Puppet service1.

The Puppet service runs during bootstrap, and at every reboot, to provide a consistent configuration across the StarlingX system nodes.

This repository is not intended to be developed standalone, but rather as part of the StarlingX Source System, which is defined by the StarlingX manifest2.

References

  1. https://www.puppet.com↩︎

  2. https://opendev.org/starlingx/manifest.git↩︎

Description
StarlingX Puppet modules and manifests
Readme 20 MiB
Languages
Puppet 58.5%
Python 21.6%
HTML 7.5%
Shell 7.1%
Ruby 4.7%
Other 0.6%