feat: fix/update-kube-api-port

patrick-hermann-sva · patrick-hermann-sva · commit 9299fb739bc1 · 2026-01-06T17:07:53.000+01:00
diff --git a/.gitignore b/.gitignore
@@ -11,3 +11,5 @@
 pyvenv.cfg
 .venv
 pip-selfcheck.json
+
+*.task*
diff --git a/defaults/main.yaml b/defaults/main.yaml
@@ -6,7 +6,6 @@ docker_package: "docker-{{ docker_edition }}{{ docker_version }}"
 docker_package_state: present
 
 
-
 set_proxy: false
 add_registry_mirrors: false
 login_into_private_registry: false
@@ -78,6 +77,9 @@ custom_control_plane_ports:
   - containerPort: 34101
     hostPort: 34101
 
+set_inotify: true
+install_kind_bins: true
+
 # Worker Node Specific Mounts
 worker_node_mounts:
   0:  # First worker (index 0)
diff --git a/tasks/inotify.yaml b/tasks/inotify.yaml
@@ -0,0 +1,31 @@
+---
+- name: Check current inotify limits
+  ansible.builtin.command: "sysctl {{ item }}"
+  loop:
+    - fs.inotify.max_user_watches
+    - fs.inotify.max_user_instances
+  register: current_limits
+  changed_when: false
+
+- name: Display current inotify limits
+  ansible.builtin.debug:
+    msg: "{{ item.stdout }}"
+  loop: "{{ current_limits.results }}"
+  loop_control:
+    label: "{{ item.item }}"
+
+- name: Set inotify max_user_watches
+  ansible.posix.sysctl:
+    name: fs.inotify.max_user_watches
+    value: '524288'
+    state: present
+    sysctl_set: yes
+    reload: yes
+
+- name: Set inotify max_user_instances
+  ansible.posix.sysctl:
+    name: fs.inotify.max_user_instances
+    value: '512'
+    state: present
+    sysctl_set: yes
+    reload: yes
diff --git a/tasks/kind.yaml b/tasks/kind.yaml
@@ -2,6 +2,7 @@
 - name: Download and install kind+kubectl
   ansible.builtin.include_role:
     name: download-install-binary
+  when: install_kind_bins|bool
 
 - name: Generate kind config
   ansible.builtin.template:
diff --git a/tasks/main.yaml b/tasks/main.yaml
@@ -26,6 +26,10 @@
 - name: Enable additional options
   ansible.builtin.include_tasks: enable-options.yaml
 
+- name:  Increase inotify limits for Kind/Kubernetes
+  ansible.builtin.include_tasks: inotify.yaml
+  when: set_inotify|bool
+
 - name: Install kind
   ansible.builtin.include_tasks: kind.yaml
   when: install_kind|bool
diff --git a/templates/kind.yaml.j2 b/templates/kind.yaml.j2
@@ -1,70 +1,75 @@
 kind: Cluster
 name: {{ kind_cluster_name }}
 apiVersion: kind.x-k8s.io/v1alpha4
-{%  if feature_gates is defined %}
+{% if feature_gates is defined %}
 featureGates:
-{%    for gate, enabled in feature_gates.items() %}
+{% for gate, enabled in feature_gates.items() %}
   {{ gate }}: {{ enabled }}
-{%    endfor %}
-{%  endif %}
+{% endfor %}
+{% endif %}
 networking:
 {% if api_server_address is defined %}
   apiServerAddress: '{{ api_server_address }}'
+{% endif %}
+{% if api_server_port is defined %}
+  apiServerPort: {{ api_server_port }}
 {% endif %}
   disableDefaultCNI: {{ disableDefaultCNI | default(false) }}
   kubeProxyMode: {{ kubeProxyMode | default("none") }}
 nodes:
-{%  for i in range(count_controlplane_nodes | int) %}
+{% for i in range(count_controlplane_nodes | int) %}
   - role: control-plane
     image: kindest/node:v{{ kubectl_version }}
-{%  if enable_ingress_ports or custom_control_plane_ports %}
-{%    if node_labels is defined %}
+{% if enable_ingress_ports or custom_control_plane_ports %}
+{% if node_labels is defined %}
     kubeadmConfigPatches:
       - |
         kind: InitConfiguration
         nodeRegistration:
           kubeletExtraArgs:
             node-labels: {{ node_labels }}
-{%    endif %}
+{% endif %}
     extraPortMappings:
-{%    if custom_control_plane_ports is defined %}
-{%      for port_mapping in custom_control_plane_ports %}
+{% if custom_control_plane_ports is defined %}
+{% for port_mapping in custom_control_plane_ports %}
+{% if port_mapping.containerPort != 6443 %}
       - containerPort: {{ port_mapping.containerPort }}
         hostPort: {{ port_mapping.hostPort }}
-{%        if port_mapping.protocol is defined %}
+{% if port_mapping.protocol is defined %}
         protocol: {{ port_mapping.protocol }}
-{%        endif %}
-{%      endfor %}
-{%    elif enable_ingress_ports is defined %}
+{% endif %}
+{% endif %}
+{% endfor %}
+{% elif enable_ingress_ports is defined %}
       - containerPort: 80
         hostPort: 80
         protocol: TCP
       - containerPort: 443
         hostPort: 443
         protocol: TCP
-{%    endif %}
-{%  endif %}
-{%  endfor %}
-{%  for i in range(count_worker_nodes | int) %}
+{% endif %}
+{% endif %}
+{% endfor %}
+{% for i in range(count_worker_nodes | int) %}
   - role: worker
     image: kindest/node:v{{ kubectl_version }}
-{%  if enable_host_paths %}
+{% if enable_host_paths %}
     extraMounts:
-{%    if worker_node_mounts and worker_node_mounts[i] is defined %}
-{%      for mount in worker_node_mounts[i] %}
+{% if worker_node_mounts and worker_node_mounts[i] is defined %}
+{% for mount in worker_node_mounts[i] %}
       - hostPath: {{ mount.hostPath }}
         containerPath: {{ mount.containerPath }}
-{%      endfor %}
-{%    else %}
-      - hostPath: /mnt/data-node{{ i + 1 }}
+{% endfor %}
+{% else %}
+      - hostPath: /mnt/{{ kind_cluster_name }}-data-node{{ i + 1 }}
         containerPath: /data
-{%    endif %}
-{%  endif %}
-{%  endfor %}
-{%  if containerd_config_patches is defined %}
+{% endif %}
+{% endif %}
+{% endfor %}
+{% if containerd_config_patches is defined %}
 containerdConfigPatches:
 {% for patch in containerd_config_patches %}
   - |-
 {{ patch | indent(4, first=True) }}
 {% endfor %}
-{%  endif %}
+{% endif %}
diff --git a/tests/kind.yaml b/tests/kind.yaml
@@ -1,4 +1,6 @@
 ---
+# export ANSIBLE_ROLES_PATH=~/projects/ansible-dev
+# ansible-playbook ./tests/kind.yaml -i /tmp/inv -vv
 - hosts: all
   become: true
 
@@ -17,9 +19,6 @@
     api_server_port: 33843
 
     custom_control_plane_ports:
-      - containerPort: 6443
-        hostPort: "{{ api_server_port }}"
-        protocol: TCP
       - containerPort: 34100
         hostPort: 34100
         protocol: TCP
@@ -29,6 +28,8 @@
 
     api_server_address: "{{ ansible_default_ipv4.address }}"
 
+    set_inotify: true
+    install_kind_bins: true
     # Worker Node Specific Mounts
     worker_node_mounts:
       0:  # First worker (index 0)
@@ -38,7 +39,7 @@
         - hostPath: /mnt/xplane-2
           containerPath: /data
 
-    rebuild_kind_cluster: false
+    rebuild_kind_cluster: true
 
     disableDefaultCNI: true
     kubeProxyMode: "none"
@@ -66,7 +67,7 @@
           installCrds: false
 
       - location: "git::https://github.com/stuttgart-things/helm.git@cicd/crossplane.yaml.gotmpl"
-        state: absent
+        state: present
         state_values:
           version: 2.1.3
           deployTeraformProvider: false
