Christoph Stäbler
1a491fc10c
Update hashes and set default to 1.19.4 ( #6903 )
2020-12-03 06:34:59 -08:00
Etienne Champetier
68b96bdf1a
Helm v3 only ( #6846 )
...
* Fix etcd download dest
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
* Only support Helm v3, cleanup install
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
2020-12-02 00:20:50 -08:00
Florian Ruynat
f6eed8091e
Remove contiv related files ( #6964 )
2020-11-30 06:48:50 -08:00
Sergey
4a8a52bad9
containerd docker hub registry mirror support ( #6962 )
...
* containerd docker hub registry mirror support
* add docs
* fix typo
* fix yamllint
* fix indent in sample
and ansible-playbook param in testcases_run
* fix md
* mv common vars to tests/common/_docker_hub_registry_mirror.yml
* checkout vars to upgrade tests
2020-11-30 00:22:49 -08:00
Florian Ruynat
405692d793
Switch some image from dockerhub to k8s.gcr (also increase pkg retries) ( #6955 )
2020-11-26 08:46:19 -08:00
Andrii
8a153ed38e
Add serviceExternalIPs option for calico installation ( #6928 )
2020-11-25 05:34:39 -08:00
Barry Melbourne
eb16986f32
Add RHEL support subscription registration ( #6572 )
2020-11-24 08:33:00 -08:00
Florian Ruynat
60b0fb3e88
Update hashes and set default version to 1.19.3 ( #6841 )
2020-10-21 00:58:20 -07:00
wand3r3r
f323d70c0f
Adding option to disable globally applying a proxy to etc/yum.conf ( #6828 )
...
* Adding option to disable gloablly applying a proxy to etc/yum.conf
* Change made to proxy_yum_globaly basedon reviewer feedback
* fix trailing spaces in ymllint
2020-10-20 23:22:19 -07:00
Bogdan Peste
5e32655830
Added option to force apiserver and respective client certificate to … ( #6403 )
...
* Added option to force apiserver and respective client certificate to be regenerated without necessarily needing to bump the K8S cluster version
* Removed extra blank line
2020-10-12 06:02:48 -07:00
Hans Feldt
270f91e577
cleanup kubelet_deployment_type ( #6815 )
...
No longer used/supported
2020-10-12 00:04:47 -07:00
holmesb
1301e69c7d
If no_proxy_exclude_workers is true, workers will be excluded from the no_proxy variable. This prevents docker engine restarting when scaling workers. ( #6520 )
...
Signed-off-by: holmesb <5072156+holmesb@users.noreply.github.com>
2020-10-09 01:15:07 -07:00
Mateusz Adamek
aba63f0f9a
Added support for dynamic tags in AWS and Azure. ( #6752 )
...
* Added support for dynamic tags in AWS and Azure.
* Added examples of dynamic tags configuration.
2020-09-26 10:50:48 -07:00
Wang Zhen
edea63511d
Fix reserved memory unit in kubelet configuration ( #6725 )
...
* Fix reserved memory unit in kubelet configuration
Signed-off-by: Wang Zhen <lazybetrayer@gmail.com>
* Move systemReserved default values from template
Signed-off-by: Wang Zhen <lazybetrayer@gmail.com>
2020-09-22 15:20:09 -07:00
Florent Monbillard
68118c2653
Expose offline install overrides in inventory ( #6728 )
...
* Expose offline install overrides in inventory
* Remove not recommended warning
2020-09-22 07:14:48 -07:00
David Louks
1e79dcfcaa
Added ability to set calico vxlan vni and port. defaults to calico's … ( #6678 )
...
* Added ability to set calico vxlan vni and port. defaults to calico's documented defaults.
* Check if calico_network_backend is defined prior to checking value
* Removed calico hidden defaults for vxlan port and vni
* Fixed FELIX_VXLANVNI typo
2020-09-22 01:04:48 -07:00
Florent Monbillard
5bd937ece0
Remove pypi repo and pip extra flags ( #6729 )
2020-09-21 13:27:51 -07:00
Marc-Antoine
5ec2467268
Add external_openstack_lbaas_provider setting for occm ( #6566 )
...
* Add external_openstack_lbaas_provider setting for occm
* Integrate with existing lbaas_provider block
* Refactor lbaas_provider config template block
* Remove external_openstack_lbaas_use_octavia from sample inventory
2020-09-21 07:04:32 -07:00
Florian Ruynat
05c9169c70
Fix example value for etcd_quota_backend_bytes ( #6724 )
2020-09-21 05:42:31 -07:00
Florian Ruynat
79226d0870
Add Kubernetes hashes 1.19.2/1.18.9/1.17.12 and set default ( #6698 )
2020-09-17 11:12:45 -07:00
Hans Feldt
6da385de9d
Use "kubeadm join" to join masters to control plane ( #6661 )
...
Remove configuration variable kubeadm_control_plane
2020-09-17 04:34:45 -07:00
Lukas Grossar
a870dd368e
Allow configuration of nodelabels in local_volume_provisioner ( #6620 )
2020-09-17 02:44:58 -07:00
Barry Melbourne
b6b26c710f
Add support for Calico CNI host-local IPAM plugin ( #6580 )
2020-09-17 02:44:46 -07:00
Florian Ruynat
a556f8f2bf
Remove deprecated (and removed in 1.19) flag and function --basic-auth-file ( #6655 )
2020-09-11 00:30:14 -07:00
Florian Ruynat
ad15721677
Add Kubernetes 1.19.1 hashes and set default ( #6654 )
2020-09-10 10:43:46 -07:00
Florian Ruynat
1712ba1198
Add iptables_backend to weave options ( #6639 )
2020-09-10 03:49:52 -07:00
Mikael Johansson
040dda37ed
Add comment clarifying network allocation and sizes ( #6607 )
...
* Add comment from roles/kubespray-defaults/defaults/main.yaml clarifying network allocation and sizes
Signed-off-by: Mikael Johansson <mik.json@gmail.com>
* Rewrite of the comment and added new examples
Signed-off-by: Mikael Johansson <mik.json@gmail.com>
2020-09-10 03:49:44 -07:00
Hans Feldt
803d52ffce
kubernetes: remove unused variables ( #6601 )
2020-09-04 04:53:56 -07:00
Maxim Pogozhiy
0553814b4f
Add selectable dns policy for kube-router ( #6586 )
2020-09-04 04:53:41 -07:00
Barry Melbourne
03c9c091f2
Docker: Set Cgroup driver by default to systemd ( #6563 )
...
* Set Docker Cgroup driver to systemd
* Add docker_cgroup_driver in Docker defaults
2020-08-31 04:56:20 -07:00
Marc-Antoine
5a8b68a429
Add support for openstack application credentials ( #6534 )
...
* Add support for openstack application credentials
* Add some lines for readability
* Update external_openstack_tenant_id check
Do not check external_openstack_tenant_id when application credentials are defined
* Add check for external_openstack_domain_id
* Fix typo
2020-08-31 03:30:28 -07:00
nic0las
f59d3fc4a3
Deviceroutesourceaddress ( #6508 )
...
* add FELIX_DEVICEROUTESOURCEADDRESS calico option
* add calico_use_default_route_src_ipaddr option
add calico_use_default_route_src_ipaddr option to use FELIX_DEVICEROUTESOURCEADDRESS calico option
* Update k8s-net-calico.yml
2020-08-27 02:07:01 -07:00
Sulochan Acharya
36924b63dc
Allow webhook authorization ( #6502 )
2020-08-24 06:29:41 -07:00
Florian Ruynat
142b9e1eff
Update k8s hashes and set default version to 1.18.8 ( #6532 )
2020-08-21 00:09:39 -07:00
נυαη נυαηѕση
6c41f64a98
Correct sample inventory to pass yamllint ( #6499 )
...
Nit alert. Sample inventory throws an error when processed
by yamllint. The default line is currently commented out.
However, when uncommenting it our linters fail.
2020-08-05 01:52:48 -07:00
Mike Williams
e72dbf3dfc
Option for MetalLB to talk BGP ( #6383 )
...
* Option for MetalLB to talk BGP
* Check for BGP peers when metallb_protocol is bgp
* README clarification
* Commented values as documentation only in the sample inventory
* layer 2 or BGP, not both
2020-08-05 01:52:40 -07:00
Florent Monbillard
924cc11af6
Upgrade to kubernetes 1.18.6 ( #6405 )
...
- Add 1.17.9 and 1.16.13 SHAs
2020-07-29 14:54:09 -07:00
Michal Skalski
70edccf7e0
Newer version of Local Path Provisioner in samples ( #6437 )
...
To make it less confusing for users who uncommented whole block of
local path provisioner [1] the samples should point at least to
version 0.0.3 which supports helper image [2] configured by
local_path_provisioner_helper_image_repo variable. As 0.0.3 is a bit old
samples could point to current newest release 0.0.14.
[1] 45a177e2a0 (commitcomment-38625688)
[2] 315d67fa8c
2020-07-22 00:08:11 -07:00
Paul Rey
bcac3c62a2
Add additional metadata configuration options to external Openstack CCM (kubernetes-sigs#6338) ( #6339 )
...
* Add additional metadata configuration option to external Openstack CCM (kubernetes-sigs#6338)
* Set the variable external_openstack_metadata_search_order undefined by default
2020-07-01 04:52:17 -07:00
Florian Ruynat
f515898cb5
Update hashes and set default version to 1.18.5 ( #6335 )
2020-06-30 02:00:05 -07:00
Kenichi Omichi
25bab0e976
Change MetalLB to one of addons ( #6238 )
...
This changes MetalLB contrib to one of addons for deploying MetalLB with
Kubernetes cluster deployment. By the default, Kubespray doesn't deploy
MetalLB addon.
2020-06-29 15:11:59 -07:00
Florian Ruynat
8213b1802b
Update calico to 1.15.0 + minor update to kube-ovn/weave ( #6306 )
2020-06-29 14:39:58 -07:00
Joel Seguillon
4c1e0b188d
Add .editorconfig file ( #6307 )
2020-06-29 12:39:59 -07:00
Mike Dziedziela
8ca2a9a7d5
added azure_cloud parameter to Azure's cloud_config ( #6321 )
2020-06-25 14:35:30 -07:00
Samuel Liu
c29b21717d
Add event-ttl duration ( #6310 )
...
* Add event-ttl duration
* Fix wrong location
2020-06-24 08:15:17 -07:00
Alvaro
80d16e6c91
Support for Ambassador OSS as an Ingress ( #6135 )
...
Support for Ambassador OSS as an Ingress Controller when
settings `ingress_ambassador_enabled: true`.
Signed-off-by: Alvaro Saurin <alvaro.saurin@gmail.com>
2020-06-24 07:39:17 -07:00
Pasquale Toscano
8f5c4dcd2e
Add support for Kata Containers ( #6256 )
...
* Install Kata Containers as additional container runtime
* Create RuntimeClasses for Kata Containers
* Updated Vagrant to optionally run without Docker as container manager
* Updated Vagrant to optionally use Libvirt nested virtualization
* Add Kata Containers documentation
* Fix lint errors
* Add kata_containers_enabled to kubespray-defaults
* Fixed typo error
* Fixed typo error
2020-06-22 00:28:39 -07:00
Florian Ruynat
eeb77369cb
Update hashes and set default to 1.18.4 ( #6285 )
2020-06-18 06:30:19 -07:00
Samuel Liu
dba645421f
ADD tls cipher suites support ( #6024 )
...
* ADD tls cipher suites support
yaml lint
yamllint
* update test case
* update test case
2020-06-16 04:10:05 -07:00
Florian Ruynat
b2a0b649fd
Add new Kubernetes version hashes and set default to 1.18.3 ( #6173 )
2020-05-28 01:02:03 -07:00
Paul Rey
b5aaaf864d
Add additional network configuration options to external Openstack CCM ( #6083 ) ( #6085 )
...
* Add additional network configuration options to external Openstack CCM (#6083 )
* Change the default version of external openstack cloud controller image to v1.18.1 since there was an issue in v1.18.0 where some IPs of the private network were ignored
* Change Network section in external-openstack-cloud-config.j2 to Networking
* Add networking customization information in the openstack documentation
2020-05-18 02:31:36 -07:00
Florian Ruynat
c06f482901
Update default kubernetes version to 1.18.2 ( #6064 )
2020-05-06 11:17:09 -07:00
Florian Ruynat
3ff6a2e7ff
Update default (erroneous) backend value for calico ( #6031 )
2020-04-27 00:03:39 -07:00
Florian Ruynat
299e35ebe4
Cleanup unused/erroneous variables ( #6003 )
2020-04-24 01:54:07 -07:00
Pierre Lebrun
03c8d0113c
Add vSphere external cloud provider ( #5959 )
2020-04-20 08:47:39 -07:00
Florian Ruynat
49bd208026
Update hashes (1.18.2/1.17.5/1.16.9) and set default to 1.17.5 ( #5967 )
2020-04-17 06:55:07 -07:00
Florian Ruynat
83fe607f62
Cleanup deprecated labels beta.kubernetes.io/arch and beta.kubernetes.io/os ( #5964 )
2020-04-17 05:51:06 -07:00
Pasquale Toscano
00efc63f74
Customize PodSecurityPolicies from inventory ( #5920 )
...
* Customize PodSecurityPolicies from inventory
* Fixed yaml indentation
2020-04-15 03:18:02 -07:00
Ryler Hockenbury
b061cce913
Allow configureable vni and port for flannel overlay ( #5939 )
2020-04-15 03:14:02 -07:00
MikeG
45a177e2a0
add local-path-provosioner helper image def ( #5817 )
2020-04-07 23:51:43 -07:00
spaced
0c51352a74
remove unused kubelet options ( #5903 )
2020-04-07 11:51:44 -07:00
Ali Sanhaji
937adec515
Azure Disk CSI deployment ( #5833 )
...
* Azure Disk CSI deployment
* Mention Azure CSI support
* Fix: remove unnecessary file
* Typo in documentation
* Add newline to end of file
2020-04-01 00:53:27 -07:00
Vinayaka V Ladwa
f8ad44a99f
Azure vmss - kubelet: failed to get instance ID from cloud provider: instance not found #5824 ( #5855 )
...
* kubernetes-sigs-kubespray #5824
Added support nodes which are part of Virtual Machine Scale Sets(VMSS)
* kubernetes-sigs-kubespray #5824
* kubernetes-sigs-kubespray #5824
Added comments and updatetd azure docs.
* kubernetes-sigs-kubespray #5824
Added supported values comments for "azure_vmtype" in azure.yml
2020-03-31 10:12:40 -07:00
Ali Sanhaji
484df62c5a
GCP Persistent Disk CSI Driver deployment ( #5857 )
...
* GCP Persistent Disk CSI Driver deployment
* Fix MD lint
* Fix Yaml lint
2020-03-31 00:06:40 -07:00
Florian Ruynat
09308d6125
Upgrade to Kubernetes 1.174 ( #5628 )
...
* Upgrade to Kubernetes 1.17.4 - change defaults
* Update ci jobs to previous k8s release (will fix them afterward)
2020-03-27 07:40:23 -07:00
Ali Sanhaji
a8a05a21a4
AWS EBS CSI implementation ( #5549 )
...
* AWS EBS CSI implementation
* Fixing image repos
* Add OWNERS file
* Fix expressions
* Add csi-driver tag
* Add AWS EBS prefix to variables
* Add AWS EBS CSI Driver documentation
2020-03-25 13:10:25 -07:00
Pasquale Toscano
4b5299bb7a
Add variables to configure Containerd default runtime, untrusted runt… ( #5497 )
...
* Add variables to configure Containerd default runtime, untrusted runtime and additional runtimes
* Add containerd settings to sample inventory
* Empty commit
2020-03-16 03:48:36 -07:00
Michael Shnit
29128eb316
Add AWS ALB Ingress Controller ( #5489 )
...
* Add AWS ALB Ingress Controller Ansible role
* remove trailing spaces
* update owners
* ALB ingress: update rbac clusterrole and remove role
* Move alb-ingress role to roles/kubernetes-apps/ingress_controller folder
2020-03-16 02:58:35 -07:00
hfinucane
158d998ec4
Support configuring the Calico iptables insert mode ( #5473 )
...
* Support configuring the insert mode
Defaults to the upstream default https://docs.projectcalico.org/v3.9/reference/felix/configuration
so nothing should change for existing deployments.
This allows coexistence with other firewall management technologies.
* Add a note to the sample config
2020-03-14 06:36:35 -07:00
bozzo
d69db3469e
Add external zones in nodelocaldns configuration ( #5591 )
...
Allows to configure additionnal zone for domains not resolved by `upstream_dns_servers`.
2020-03-14 06:26:34 -07:00
Florent Monbillard
ca73e29ec5
Use k8s.gcr.io for kubernetes related images ( #5764 )
...
* Use k8s.gcr.io for kubernetes related images
* Use k8s.gcr.io in inventory sample
2020-03-13 14:41:48 -07:00
Florent Monbillard
0330442c63
Kubernetes 1.16.8 ( #5770 )
...
* Kubernetes 1.16.8
* Use 1.16.8 in sample inventory and kubespray-defaults
2020-03-13 13:41:47 -07:00
Sergey
e60b9f796e
add calico VXLAN mode, update docs and vars in sample inventory ( #5731 )
...
* calico VXLAN mode
* check vars if calico backend defined
2020-03-12 01:20:37 -07:00
Kubernetes Prow Robot
be12164290
Add option and defaults to configure metrics exporting in containerd ( #5466 )
...
* Add metrics exporting in containerd config
* Add containerd.yml with containerd configuration example to the sample group_vars
2020-03-04 14:46:38 -08:00
Steven Reitsma
d1acf7f192
Add additional configuration options to external Openstack CCM ( #5661 )
...
- Add support for manage-security-groups flag
- Add support for internal-lb flag
2020-02-26 13:03:19 -08:00
Ali Sanhaji
646fd5f47b
External OpenStack Cloud Controller Manager implementation ( #5491 )
...
* External OpenStack Cloud Controller Manager implementation
* Adding controller image tag
* Minor fixes
* Restructuring the external cloud controller to work with KubeADM
2020-02-18 04:47:28 -08:00
Thomas Ziegler
765d907ea1
added reference to calico_ip_auto_method in sample inventory group vars ( #5612 )
2020-02-13 13:18:36 -08:00
Fabiano Tessarolo
16fd2e5d68
Fix etcd deployment type variable location ( #5587 )
...
On deployments types where etcd server is splitted from Kube Master, the deployment fails since it cannot find the variable.
2020-02-07 02:17:43 -08:00
rptaylor
b7527399b5
fully clean docker_options from sample inventory ( #5414 )
...
* comment out docker_options
* fix yamllint
2020-02-07 02:13:43 -08:00
Florian Ruynat
f1025dce4e
Update to hashes and default version (1.15.8 / 1.16.5 / 1.17.1) ( #5564 )
2020-01-23 03:54:49 -08:00
Matthew Mosesohn
b35b816287
Raise typha max connections to 300 ( #5527 )
...
Raises limit from 100 to 300 because the default is far too low
and the pod can handle 300 with the given resources.
Change-Id: Ib1eec10da3d09d198933fcfe87291587e58d7cdb
2020-01-10 00:24:33 -08:00
Etienne Champetier
2c2ffa846c
Calico: update to 3.11.1, allow to configure calico_iptables_backend ( #5514 )
...
I've tested this update by deploying a containerd / etcd cluster on top CentOS7,
MetalLB + NGINX Ingress. Upgrade using upgrade-cluster.yml
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
2020-01-08 02:27:40 -08:00
bozzo
c0b262a22a
Add kube-router configuration to enable metrics exposure ( #5416 )
2019-12-16 04:35:36 -08:00
Florian Ruynat
8bb1af9926
fix typo ( #5452 )
2019-12-16 02:55:36 -08:00
ooneko
2a9aead50e
Set kube_image_repo use {{ gcr_image_repo }} ( #5314 )
...
To aviod repeat "gcr.io" again.
2019-12-09 02:52:02 -08:00
Florian Ruynat
257c20f39e
add 1.16.3 checksums and set new version as default ( #5384 )
2019-11-27 01:29:20 -08:00
Julien Pervillé
0200138a5d
Pass ingress_nginx_extra_args
when deploying the nginx-ingress addon ( #5321 )
2019-11-11 03:51:40 -08:00
Johannes Scheuermann
feac802456
Remove default docker_options from sample ( #5287 )
2019-11-11 03:23:40 -08:00
Ali Sanhaji
b0ee1f6cc6
Deploy Cinder CSI driver to provision volumes over OpenStack ( #5184 )
...
* Deploy Cinder CSI driver to provision volumes over OpenStack
* Deploy Cinder CSI StorageClass
* Cinder CSI doc
2019-11-01 00:59:24 -07:00
Matthew Mosesohn
a1fff30bd9
Generate TLS certs for calico typha ( #5258 )
...
* Generate TLS certs for calico typha
Change-Id: I3883f49c124c52d0fc5b900ca2b44e4e2ed0d707
* Add group vars note
Change-Id: I63550dfef616e884efdbd42010a90b2c04c5eb69
2019-10-17 07:02:38 -07:00
Hugo Blom
db33dc6938
Add support for Kubernetes 1.16.2 ( #5272 )
...
* Add support for Kubernetes 1.16.1
* Defaults to 1.16.1
* add 1.16.2 checksums and set new version as default
* correct 1.16.2 checksums and add 1.15.5 checksums
2019-10-16 18:34:38 -07:00
Matthew Mosesohn
a43e0d3f95
Switch to Kubernetes v1.16.0 ( #5189 )
...
* Switch to Kubernetes v1.16.0
Change-Id: I5d6a9528b2d443750fc5e031aff15ad3ffead158
* Fix download localhost cached file path
Change-Id: I65e79b70e3d1b37265ebc60f41b460cf4b0a0d47
* fix kubeadm etcd for v1.16
Change-Id: I6888a00fd48b530a38b0b31c4095492476af42d2
* disable tf packet jobs
Change-Id: I075c4666547fdea4c50ec04864f38e2cfaa79154
* Disable contiv packet jobs. Fix kube-router
Change-Id: I3170e8789e60711d4cee8faf65f2094480b79b8d
* bump sonobuoy version
Change-Id: Ib946905629c7c53ed88f08fb2f41c454457a0097
2019-10-02 02:21:07 -07:00
Etienne Champetier
81cb302399
MetalLB: fail if kube_proxy_strict_arp is false ( #5180 )
...
When using IPVS, kube_proxy_strict_arp = true is required
https://github.com/danderson/metallb/issues/153#issuecomment-518651132
Add kube_proxy_strict_arp to inventory/sample
2019-09-26 04:21:06 -07:00
陈谭军
3bcdf46937
fix-up some spelling mistakes ( #5202 )
2019-09-25 23:27:08 -07:00
Erwan Miran
f18e77f1db
Blocksize for calico default pool should be configurable ( #5198 )
2019-09-25 04:44:00 -07:00
陈谭军
2fc02ed456
fix-typo ( #5199 )
2019-09-25 04:04:00 -07:00
Andreas Krüger
86cc703c75
Upgrade to Kubernetes 1.15.3 ( #5091 )
2019-08-20 02:05:32 -07:00
Bort Verwilst
a235605d2c
go to k8s 1.15.2, update nodelocaldns to latest bugfix release ( #5048 )
2019-08-08 19:49:25 -07:00
Maxim Snezhkov
b710c72f04
Add ability to setup virtual ip for ingress-controller ( #5044 )
2019-08-06 19:24:50 -07:00
w33dw0r7d
92bfcf0467
Add CoreDNS endpoint_pod_names option ( #5012 )
2019-07-31 11:26:15 -07:00