C12s/c12s-kubespray
3
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
6510 commits 17 branches 66 tags 141 MiB
Commit graph

6510 commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeroen b75ee0b111
Define ostree variable for runc (#9417) 
The ostree variable is not defined previously raising an error when
the runtime tries to read it.

Co-authored-by: Victor Morales <chipahuac@hotmail.com>
 2022-10-23 21:22:25 -07:00
Zhong Jianxin 63e3f4dea9
[2.19] preinstall: Add nodelocaldns to supersede_nameserver if enabled (#9324) 
When a machine that use dhclient and resolvconf reboots, this will make
/etc/resolv.conf remain close to the one before reboot
 2022-09-27 00:07:51 -07:00
ERIK 1026b5974f
Update kubespray version to v2.19.1 (#9241) (#9253) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2022-09-05 18:48:55 -07:00
Cristian Calin 453dbcef1d
disable kubelet_authorization_mode_webhook by default (#9239) 2022-08-31 02:55:00 -07:00
Chad Swenson 4a6600002f
Fixes for calico etcd mode (2.19 backport) (#9234) 
release-2.19 backport of #9228

It seems that PR #8839 broke `calico_datastore: etcd` when it removed ipamconfig support for etcd mode.

This PR fixes some failing tasks when calico_datastore == etcd, but it does not restore ipamconfig support for calico in etcd mode. If someone wants to restore ipamconfig support for calico_datastore: etcd please submit a follow up PR for that.
 2022-08-30 10:02:55 -07:00
Sergey 6eb313584e
do not run etcd role in scale.yml playbook when etcd installed by kubeadm (#9210) (#9216) 2022-08-24 09:08:03 -07:00
Kenichi Omichi a270632466
Allow "openSUSE Tumbleweed" to be run (#9072) (#9082) 
The commit 1ce2f04 tried to merge multiple SUSE OS checks including
"openSUSE Leap" and "openSUSE Tumbleweed" into a single SUSE, but
that was a perfect change.
Then the commit c16efc9 tried to fix it for "openSUSE Leap", but it
didn't take care of "openSUSE Tumbleweed".
Then this adds "openSUSE Tumbleweed" to the OS check.
 2022-07-12 00:24:51 -07:00
Sébastien Masset 00550ba832
[2.19] Add missing configuration for extra tolerations (#8999) 
* Added new configuration item for extra tolerations in policy controllers

Signed-off-by: Sébastien Masset <smt.masset@gmail.com>

* Added new configuration item for extra tolerations in DNS autoscaler

Signed-off-by: Sébastien Masset <smt.masset@gmail.com>

* Aligned existing handling of extra DNS tolerations

Signed-off-by: Sébastien Masset <smt.masset@gmail.com>
 2022-06-23 01:41:44 -07:00
Kenichi Omichi b4951da405
calicoctl repo has been merged in calico (#8920) (#8972) 
Co-authored-by: Mathieu Parent <mathieu.parent@insee.fr>
 2022-06-14 02:07:33 -07:00
Chinthiti Wisetsombat cd93d10688
Fix: set fallback value of kubelet ip6 (#8858) (#8926) (#8942) 
* Fix: set fallback value of kubelet ip6 (#8858)

* Prune the spurious comma in the end of kubelet_address

- Update `roles/kubernetes/node/defaults/main.yml`

Co-authored-by: Cristian Calin <6627509+cristicalin@users.noreply.github.com>

* Fix: set fallback value of kubelet ip6 (#8858)

- Apply the lint: 132606368e

Co-authored-by: Cristian Calin <6627509+cristicalin@users.noreply.github.com>

Co-authored-by: Ho Kim <ho.kim@ulagbulag.io>
Co-authored-by: Cristian Calin <6627509+cristicalin@users.noreply.github.com>
 2022-06-08 10:08:22 -07:00
ERIK e6940d8a7b
update kubespray image tag in readme to v2.19.0 (#8938) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2022-06-07 09:22:56 -07:00
mahjonp dca5cde493
fix 8893#issuecomment-1147154353 (#8933) (#8939) 
Signed-off-by: mahjonp <junpeng.man@gmail.com>
 2022-06-07 09:18:56 -07:00
rtsp 1f65e6d3b5
[ingress-nginx] upgrade to 1.2.1 (#8904) 2022-06-01 00:23:10 -07:00
Kenichi Omichi 9bf7aaf6cd
Update RELEASE.md (#8884) 
This updates RELEASE.md file to understand the release process
easily based on hands-on experience.
 2022-06-01 00:23:03 -07:00
Max Gautier 5512465b34
Revert "Set exact user for Kubelet services" (#8872) 
This reverts commit e375678674.

The workaround of explicitly specifying root for the kubelet unit was
for pulling images from private registry. Kubernetes now have a
dedicated mechanism with imagePullSecret.
 2022-06-01 00:19:02 -07:00
Chris Ricker 2f30ab558a
Add 1.24 mappings for etcd and snapshot_controller (#8903) 
Map appropriate versions of etcd and snapshot_controller containers with
k8s 1.24
 2022-06-01 00:09:02 -07:00
Daniil Muidinov 5c136ae3af
[calico] add 3.22.3 and 3.23.1 (#8897) 
* [calico]
* add 3.22.3 and 3.23.1
* set 3.22.3 default
* fix download crd for calico 3.22.3 and upper

* update calico README.md
 2022-05-31 13:27:23 -07:00
mahjonp c927da00e0
Support cilium ip-masq-agent configuration (#8893) 
* fix deploy Cilium with eBPF-based Masquerading failed

Signed-off-by: mahjonp <junpeng.man@gmail.com>

* forget to add the enable-ip-masq-agent flag

Signed-off-by: mahjonp <junpeng.man@gmail.com>
 2022-05-31 09:26:53 -07:00
Samuel Liu 1600fd9082
clean up tags (#8880) 2022-05-31 07:52:53 -07:00
Samuel Liu 14acd124bc
fix containerd images downalod bugs (#8894) 2022-05-31 00:22:53 -07:00
rtsp e3cbbfb9ed
[kubernetes] make 1.23.7 the new default (#8888) 2022-05-29 17:08:51 -07:00
rtsp 5f21e0b58b
Update components version in README.md (#8886) 2022-05-29 14:10:51 -07:00
Alessio Greggi d22204a59f
docs: add hardening guide (#8868) 2022-05-29 12:36:50 -07:00
ERIK 90289b8502
add arch var in dockerfile (#8875) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2022-05-29 12:32:51 -07:00
Mohamed Zaian 78aacee21b
[kubernetes] add hashes for 1.24.1 and other versions. (#8876) 
* [kubernetes] add hashes for 1.24.1 and other versions.
versions: v1.21.13, v1.22.10, v1.23.7 & v1.24.1

* [kubernetes] make v1.23.7 default1
 2022-05-27 12:00:42 -07:00
Gleb Galkin f47aca3558
Added |bool for rhel_enable_repos (#8871) 2022-05-26 18:51:55 -07:00
Kenichi Omichi 73fc70dbe8
Delete kube_version v1.20- related code (#8869) 
Current Kubespray supports the Kubernetes version 1.21 or upper with
`kube_version_min_required: v1.21.0`

Then kube_version v1.20- related code is not used at all.
This deletes those code for cleanup.
 2022-05-25 21:31:22 -07:00
Kenichi Omichi dc2a18e436
Merge pull request #8815 from simplekube-ro/dont_clobber_calico 
[calico] don't clobber calico options set by the user
 2022-05-24 10:25:48 -07:00
Thearas 82590eb087
fix remove docker-ce.repo failed (#8856) 2022-05-24 05:44:06 -07:00
Ross Kusler 4c97ce747c
Adding support for the kube-router flag --cluster-asn flag (#8837) 2022-05-23 16:39:10 -07:00
Samuel Liu ebbc5ed0ce
add liupeng0518 to reviewers (#8853) 2022-05-23 21:42:14 +03:00
Necatican Yıldırım dc1af5a9c5
[etcd] Add support for setting the request size limit (#8849) 
* [etcd] Add extra documentation for `etcd_memory_limit` and `etcd_quota_backend_bytes`

Signed-off-by: necatican <necaticanyildirim@gmail.com>

* [etcd] Add support for setting ETCD_MAX_REQUEST_BYTES

Signed-off-by: necatican <necaticanyildirim@gmail.com>
 2022-05-23 09:36:03 -07:00
irizzant 85bd1eea27
fix(calico): add missing "get" verb (#8847) 
Signed-off-by: irizzant <i.rizzante@gmail.com>
 2022-05-21 01:20:00 -07:00
Necatican Yıldırım 2b151c6aa2
cni-plugins: upgrade to 1.1.1 (#8852) 
Signed-off-by: necatican <necaticanyildirim@gmail.com>
 2022-05-21 11:14:16 +03:00
David Louks 93fe3e06ef
Add support for including annotations on aws-ebs-csi-controller (#8779) 
* Add support for including annotations on aws-ebs-csi-controller

* update comment to specify role arn
 2022-05-20 15:00:00 -07:00
Tamas Pasztor 9d3a894991
Possible remove ippools from cni config (#8845) 
* Possible remove ippools from cni config

* Typo

* Update roles/network_plugin/calico/templates/cni-calico.conflist.j2

Co-authored-by: Kenichi Omichi <ken1ohmichi@gmail.com>

* Update cni-calico.conflist.j2

Incorrectly deleted calico forwarding content.

* Update roles/network_plugin/calico/templates/cni-calico.conflist.j2

Co-authored-by: Kenichi Omichi <ken1ohmichi@gmail.com>

Co-authored-by: Kenichi Omichi <ken1ohmichi@gmail.com>
 2022-05-19 23:45:13 -07:00
Kenichi Omichi 0e6b727e53
Update docs for using venv (#8842) 
Due many patterns of Linux distributions, it is difficult to install
ansible dependencies as system-wide stably.
Apart of Kubespray doc[1] recommends to use venv to avoid such issue,
and this applies venv usage to the other parts of the doc.

[1]: https://github.com/kubernetes-sigs/kubespray/blob/master/docs/setting-up-your-first-cluster.md#set-up-kubespray
 2022-05-19 23:39:12 -07:00
Andrey e42a01f203
Fixed systemd-networkd restart for ubuntu 22.04, when using reset.yml (#8841) 
* Fixed systemd-networkd restart  for ubuntu 22.04

* fixed systemd-networkd restart for all Ubuntu
 2022-05-20 09:34:53 +03:00
Samuel Liu a28b58dbd0
[calico]use ipamconfig instead of calico ipam command (#8839) 
* use ipamconfig instead of calico ipam command

* fix ansible lint
 2022-05-19 11:13:20 -07:00
orange-llajeanne a26a9ee14f
set apparmor_enabled in netchecker task (#8844) 2022-05-19 10:49:21 -07:00
Kenichi Omichi c09fcd4f92
Skip gathering facts when reset_nodes is false (#8843) 
The doc[1] explains we need to specify

  "-e reset_nodes=false -e allow_ungraceful_removal=true"

to delete offline node. However the task "Gather facts"
tried to gather facts of offline node also and the task
was failed.
This adds a condition to skip gathering facts when reset_nodes
is false on remove-node.yml.

[1]: https://github.com/kubernetes-sigs/kubespray/blob/master/docs/nodes.md#3-remove-an-old-node-with-remove-nodeyml
 2022-05-19 01:04:07 -07:00
Samuel Liu 593359ec77
fix kube-ovn image (#8838) 2022-05-18 08:36:53 -07:00
Maxime Guyot 34ec4d5d40
Move woopstar to emeritus approver (#8809) 2022-05-18 02:36:53 -07:00
Kay Yan 3d8f3bc0b7
Fix the invalid kube vip manifest (#8831) 
* add Feature synchronized time checking

* fix-invalid-kube-vip-manifest
 2022-05-17 23:48:55 -07:00
Samuel Liu eea7bb7692
only need run this once (#8833) 
calicoctl ipam xx
calicoctl apply xx
 2022-05-17 09:52:27 -07:00
Cristian Calin 3a89e31dee
[ansible] update ansible and cryptography requirements to work on ubuntu 22.04 (#8826) 2022-05-16 11:14:17 -07:00
Cristian Calin 0c504e4984
[docs] document support for ansible versions (#8827) 
drop note about not supporting ansible 2.9 since we still cover it in
nightly CI
 2022-05-16 00:50:17 -07:00
Kenichi Omichi 0bf070c33b
doc: write how to use kata-container for pods (#8817) 
kata-container is not used by default even if enabling kata_containers_enabled.
This updates the doc for writing how to do that.
 2022-05-13 23:15:18 -07:00
Cyclinder dc8ad78206
fix: incorrect condition type (#8822) 
Signed-off-by: cyclinder qifeng.guo@daocloud.io
 2022-05-13 14:09:56 -07:00
ERIK 48e938660d
Allow replacement of address prefixes for all images (#8764) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2022-05-13 09:23:14 +03:00