hetzner-k3s 0.3.2 → 0.3.6

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 109610e9f4d807bac091471880141069488865da1024cee8bb0479846c772165
-  data.tar.gz: d4f882d488ecc94d6f7234fc122c4dc6241dfc8ce946cbce1855619353296917
+  metadata.gz: 2b1b2acb7f0649eac91750409418446c2b1ffea2b1b7a32b1f9f8a6fd2d50c5b
+  data.tar.gz: 457994e28a028e8a1052e20a68ab653bb41fdf5fb88160f43e51b3de49bc8710
 SHA512:
-  metadata.gz: 6cd9649eef2f75f616f9dc5bc2bb86d2b10e0e227137adb6683c502b0ed42a0888f59f361e088edece98eb91c0ee11c596c8734c00865081564cb1539cb537ea
-  data.tar.gz: e1569ef139160e15daa78566cb48e71bf99999d5e6f19a98f30fc73b984bc7fb5fe0a208a4594c7d8c4606ffd6ea509409cc31cd48818739be1ed83be914c9b0
+  metadata.gz: 743edefe6fdaa9ebf9dc2236e4ce672f44d10bcbe954bda7a1560c4166cacf12824eb6c994dfe635543746c402696d981a22224852bb25a7df7558c81bdbbff3
+  data.tar.gz: 506488a2edac4c9e7b68d09e8b8dd8a970993dc8a87ba7d6bf3200856f4384ebe90362ea2fe337e2cdb4f43cb951b7c79c2a9a26154ed278b1704c369b88e85a

data/Dockerfile

@@ -0,0 +1,11 @@
+FROM ruby:2.7.4-alpine
+
+RUN apk update --no-cache \
+  && apk add build-base git openssh-client
+
+RUN gem install hetzner-k3s
+
+COPY entrypoint.sh /entrypoint.sh
+
+ENTRYPOINT ["/entrypoint.sh"]
+

data/Gemfile.lock

@@ -1,7 +1,9 @@
 PATH
   remote: .
   specs:
-    hetzner-k3s (0.3.1)
+    hetzner-k3s (0.3.6)
+      bcrypt_pbkdf
+      ed25519
       http
       k8s-ruby
       net-ssh
@@ -13,6 +15,7 @@ GEM
   specs:
     addressable (2.8.0)
       public_suffix (>= 2.0.2, < 5.0)
+    bcrypt_pbkdf (1.1.0)
     concurrent-ruby (1.1.9)
     diff-lcs (1.4.4)
     domain_name (0.5.20190701)
@@ -43,6 +46,7 @@ GEM
       dry-equalizer (~> 0.2)
       dry-inflector (~> 0.1, >= 0.1.2)
       dry-logic (~> 0.4, >= 0.4.2)
+    ed25519 (1.2.4)
     excon (0.85.0)
     ffi (1.15.3)
     ffi-compiler (1.0.1)

data/README.md

@@ -33,6 +33,16 @@ gem install hetzner-k3s
 
 This will install the `hetzner-k3s` executable in your PATH.
 
+### With Docker
+
+Alternatively, if you don't want to set up a Ruby runtime but have Docker installed, you can use a container. Run the following from inside the directory where you have the config file for the cluster (described in the next section):
+
+```bash
+docker run --rm -it -v ${PWD}:/cluster -v ${HOME}/.ssh:/tmp/.ssh vitobotta/hetzner-k3s create-cluster --config-file /cluster/test.yaml
+```
+
+Replace `test.yaml` with the name of your config file.
+
 ## Creating a cluster
 
 The tool requires a simple configuration file in order to create/upgrade/delete clusters, in the YAML format like in the example below:
@@ -60,6 +70,9 @@ worker_node_pools:
 
 It should hopefully be self explanatory; you can run `hetzner-k3s releases` to see a list of the available releases from the most recent to the oldest available.
 
+If you are using Docker, then set `kubeconfig_path` to `/cluster/kubeconfig` so that the kubeconfig is created in the same directory where your config file is.
+
+
 If you set `masters.instance_count` to 1 then the tool will create a non highly available control plane; for production clusters you may want to set it to a number greater than 1. This number must be odd to avoid split brain issues with etcd and the recommended number is 3.
 
 You can specify any number of worker node pools for example to have mixed nodes with different specs for different workloads.
@@ -214,6 +227,18 @@ Once the cluster is ready you can create persistent volumes out of the box with
 
 ## changelog
 
+- 0.3.6
+  - Retry SSH commands when IO errors occur
+
+- 0.3.5
+  - Add descriptions for firewall rules
+
+- 0.3.4
+  - Added Docker support
+
+- 0.3.3
+  - Add some gems required on Linux
+
 - 0.3.2
   - Configure DNS to use Cloudflare's resolver instead of Hetzner's, since Hetzner's resolvers are not always reliable
 

data/entrypoint.sh

@@ -0,0 +1,12 @@
+#!/bin/sh
+
+cp -R /tmp/.ssh /root/.ssh
+chmod 700 /root/.ssh
+chmod 600 /root/.ssh/*
+chmod 644 /root/.ssh/*.pub
+
+eval $(ssh-agent -s) 2&>1  > /dev/null
+
+ssh-add ~/.ssh/* 2&>1  > /dev/null
+
+hetzner-k3s "$@"

data/hetzner-k3s.gemspec

@@ -23,6 +23,8 @@ Gem::Specification.new do |spec|
   spec.add_dependency "net-ssh"
   spec.add_dependency "k8s-ruby"
   spec.add_dependency "sshkey"
+  spec.add_dependency "ed25519"
+  spec.add_dependency "bcrypt_pbkdf"
 
   # Specify which files should be added to the gem when it is released.
   # The `git ls-files -z` loads the files in the RubyGem that have been added into git.

data/lib/hetzner/infra/firewall.rb

@@ -44,6 +44,7 @@ module Hetzner
           name: cluster_name,
           rules: [
             {
+              "description": "Allow port 22 (SSH)",
               "direction": "in",
               "protocol": "tcp",
               "port": "22",
@@ -54,6 +55,7 @@ module Hetzner
               "destination_ips": []
             },
             {
+              "description": "Allow ICMP (ping)",
               "direction": "in",
               "protocol": "icmp",
               "port": nil,
@@ -64,6 +66,7 @@ module Hetzner
               "destination_ips": []
             },
             {
+              "description": "Allow port 6443 (Kubernetes API server)",
               "direction": "in",
               "protocol": "tcp",
               "port": "6443",
@@ -74,6 +77,7 @@ module Hetzner
               "destination_ips": []
             },
             {
+              "description": "Allow all TCP traffic between nodes on the private network",
               "direction": "in",
               "protocol": "tcp",
               "port": "any",
@@ -83,6 +87,7 @@ module Hetzner
               "destination_ips": []
             },
             {
+              "description": "Allow all UDP traffic between nodes on the private network",
               "direction": "in",
               "protocol": "udp",
               "port": "any",

data/lib/hetzner/k3s/cluster.rb

@@ -457,7 +457,7 @@ class Cluster
 
         puts "...server #{server_name} is now up."
       end
-    rescue Errno::ENETUNREACH, Errno::EHOSTUNREACH, Timeout::Error
+    rescue Errno::ENETUNREACH, Errno::EHOSTUNREACH, Timeout::Error, IOError
       retry
     end
 

data/lib/hetzner/k3s/version.rb

@@ -1,5 +1,5 @@
 module Hetzner
   module K3s
-    VERSION = "0.3.2"
+    VERSION = "0.3.6"
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: hetzner-k3s
 version: !ruby/object:Gem::Version
-  version: 0.3.2
+  version: 0.3.6
 platform: ruby
 authors:
 - Vito Botta
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2021-08-15 00:00:00.000000000 Z
+date: 2021-08-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: thor
@@ -80,6 +80,34 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: ed25519
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bcrypt_pbkdf
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 description: A CLI to create a Kubernetes cluster in Hetzner Cloud very quickly using
   k3s.
 email:
@@ -93,6 +121,7 @@ files:
 - ".rspec"
 - ".travis.yml"
 - CODE_OF_CONDUCT.md
+- Dockerfile
 - Gemfile
 - Gemfile.lock
 - LICENSE.txt
@@ -101,6 +130,7 @@ files:
 - bin/console
 - bin/setup
 - cluster_config.yaml.example
+- entrypoint.sh
 - exe/hetzner-k3s
 - hetzner-k3s.gemspec
 - lib/hetzner.rb