Text file src/k8s.io/kubernetes/cluster/gce/manifests/kube-controller-manager.manifest

Documentation: k8s.io/kubernetes/cluster/gce/manifests

     1{
     2"apiVersion": "v1",
     3"kind": "Pod",
     4"metadata": {
     5  "name":"kube-controller-manager",
     6  "namespace": "kube-system",
     7  "labels": {
     8    "tier": "control-plane",
     9    "component": "kube-controller-manager"
    10  }
    11},
    12"spec":{
    13"securityContext": {
    14  {{runAsUser}}
    15  {{runAsGroup}}
    16  {{supplementalGroups}}
    17  "seccompProfile": {
    18      "type": "RuntimeDefault"
    19  }
    20},
    21"priorityClassName": "system-node-critical",
    22"priority": 2000001000,
    23"hostNetwork": true,
    24"containers":[
    25    {
    26    "name": "kube-controller-manager",
    27    "securityContext": {
    28      "allowPrivilegeEscalation": false,
    29      "capabilities": {
    30        "drop": [
    31          "all"
    32        ]
    33      }
    34    },
    35    "image": "{{pillar['kube_docker_registry']}}/kube-controller-manager-amd64:{{pillar['kube-controller-manager_docker_tag']}}",
    36    "resources": {
    37      "requests": {
    38        "cpu": "{{cpurequest}}"
    39      }
    40    },
    41    "command": [
    42                 "/go-runner", "--log-file=/var/log/kube-controller-manager.log", "--also-stdout=false", "--redirect-stderr=true",
    43                 "/usr/local/bin/kube-controller-manager",
    44                 {{params}}
    45               ],
    46    {{container_env}}
    47    "livenessProbe": {
    48      "httpGet": {
    49        "host": "127.0.0.1",
    50        "port": 10257,
    51        "scheme": "HTTPS",
    52        "path": "/healthz"
    53      },
    54      "initialDelaySeconds": 15,
    55      "timeoutSeconds": 15
    56    },
    57    "volumeMounts": [
    58        {{cloud_config_mount}}
    59        {{additional_cloud_config_mount}}
    60        {{pv_recycler_mount}}
    61        { "name": "srvkube",
    62        "mountPath": "/etc/srv/kubernetes",
    63        "readOnly": true},
    64        {{flexvolume_hostpath_mount}}
    65        { "name": "logfile",
    66        "mountPath": "/var/log/kube-controller-manager.log",
    67        "readOnly": false},
    68        { "name": "etcssl",
    69        "mountPath": "/etc/ssl",
    70        "readOnly": true},
    71        { "name": "usrsharecacerts",
    72        "mountPath": "/usr/share/ca-certificates",
    73        "readOnly": true},
    74        { "name": "varssl",
    75        "mountPath": "/var/ssl",
    76        "readOnly": true},
    77        { "name": "etcopenssl",
    78        "mountPath": "/etc/openssl",
    79        "readOnly": true},
    80        { "name": "etcpki",
    81        "mountPath": "/etc/pki",
    82        "readOnly": true}
    83      ]
    84    }
    85],
    86"volumes":[
    87  {{cloud_config_volume}}
    88  {{additional_cloud_config_volume}}
    89  {{pv_recycler_volume}}
    90  { "name": "srvkube",
    91    "hostPath": {
    92        "path": "/etc/srv/kubernetes"}
    93  },
    94  {{flexvolume_hostpath}}
    95  { "name": "logfile",
    96    "hostPath": {
    97        "path": "/var/log/kube-controller-manager.log",
    98        "type": "FileOrCreate"}
    99  },
   100  { "name": "etcssl",
   101    "hostPath": {
   102        "path": "/etc/ssl"}
   103  },
   104  { "name": "usrsharecacerts",
   105    "hostPath": {
   106        "path": "/usr/share/ca-certificates"}
   107  },
   108  { "name": "varssl",
   109    "hostPath": {
   110        "path": "/var/ssl"}
   111  },
   112  { "name": "etcopenssl",
   113    "hostPath": {
   114        "path": "/etc/openssl"}
   115  },
   116  { "name": "etcpki",
   117    "hostPath": {
   118        "path": "/etc/pki"}
   119  }
   120]
   121}}

View as plain text