Samuel Liu
a28b58dbd0
[calico]use ipamconfig instead of calico ipam command ( #8839 )
...
* use ipamconfig instead of calico ipam command
* fix ansible lint
2022-05-19 11:13:20 -07:00
orange-llajeanne
a26a9ee14f
set apparmor_enabled in netchecker task ( #8844 )
2022-05-19 10:49:21 -07:00
Samuel Liu
593359ec77
fix kube-ovn image ( #8838 )
2022-05-18 08:36:53 -07:00
Kay Yan
3d8f3bc0b7
Fix the invalid kube vip manifest ( #8831 )
...
* add Feature synchronized time checking
* fix-invalid-kube-vip-manifest
2022-05-17 23:48:55 -07:00
Samuel Liu
eea7bb7692
only need run this once ( #8833 )
...
calicoctl ipam xx
calicoctl apply xx
2022-05-17 09:52:27 -07:00
Mohamed Zaian
632d457f78
[ingress-nginx] upgrade to 1.2.0 ( #8814 )
2022-05-12 09:07:14 -07:00
weizhoublue
b289f533b3
get wrong server name of coredns ( #8811 )
...
Signed-off-by: weizhou.lan@daocloud.io <weizhou.lan@daocloud.io>
2022-05-12 08:33:14 -07:00
Cyclinder
3eb0a4071a
set default value of name to "k8s-pod-network" ( #8813 )
...
Signed-off-by: cyclinder qifeng.guo@daocloud.io
2022-05-12 08:29:14 -07:00
Oogy
5684610a55
Support metallb peer password ( #8792 )
...
* support metallb peer password
* add MetalLB BGP password example
2022-05-11 21:39:15 -07:00
Samuel Liu
f26f544ff6
[kube-ovn]: update kube-ovn version and sync some feature ( #8790 )
...
* [kube-ovn]: some feature
kube-ovn vlan mode
ipv6/ipv4 dual stack
...
* remove unused env
* fix readinessprobe
2022-05-11 21:35:15 -07:00
Necatican Yıldırım
13443b05a6
Overhaul Cilium manifests to match the newer versions ( #8717 )
...
* [cilium] Separate templates for cilium, cilium-operator, and hubble installations
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Update cilium-operator templates
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Allow using custom args and mounting extra volumes for the Cilium Operator
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Update the cilium configmap to filter out the deprecated variables, and add the new variables
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Add an option to use Wireguard encryption on Cilium 1.10 and up
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Update cilium-agent templates
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Bump Cilium version to 1.11.3
Signed-off-by: necatican <necaticanyildirim@gmail.com>
2022-05-11 06:23:04 -07:00
Andrew Zagorodnuk
e70c00a0fe
fix: Waiting until Volumes will be detached from the node on graceful node removal ( #8739 )
2022-05-10 09:57:43 -07:00
spaced
bb67b654c5
local volume provisioner should not run on control plane nodes by default ( #8805 )
2022-05-10 19:04:24 +03:00
emiran-orange
8f618ab408
Fix condition on kata_containers_version/kube_version when kata_containers_enabled is false ( #8804 )
2022-05-09 14:56:32 -07:00
Robin Wallace
b715500b48
csi: bump upcloud csi driver ( #8784 )
2022-05-09 10:43:19 -07:00
Alessio Greggi
37a5271f5a
feat: add variables to manage makeIPTablesUtilChains and streamingConnectionIdleTimeout kubelet parameters ( #8796 )
2022-05-09 09:25:19 -07:00
Robin Wallace
42fc71fafa
[PodSecurityPolicy] Move the install of psp ( #8744 )
2022-05-09 09:21:19 -07:00
Victor Morales
02b6e4833a
Update Kata Containers runtime ( #8797 )
...
* Update Kata containers binary to 2.4.1 version
* Update overhead kata runtime values
* Fix kata-qemu default values in CRI-O
2022-05-08 17:01:18 -07:00
Andy
323a111362
[kubelet] set correct resolv.conf for Ubuntu 22.04 ( #8795 )
2022-05-06 16:31:04 -07:00
Alessio Greggi
e7df4d3dd9
add support for service-account-lookup
parameter ( #8781 )
...
* feat: add variable to manage service-account-lookup on kube-apiserver
* docs: add documentation about service-account-lookup variable
2022-05-06 00:39:07 -07:00
David Louks
3e52a0db95
Add optional setting for ca data in auth webhook ( #8777 )
...
* Add optional setting for ca data in auth webhook
* add webhook token auth variables to sample inventory
2022-05-05 14:52:43 -07:00
Cristian Calin
94484873d1
[containerd] add 1.6.4 which is needed for kubernetes 1.24.0 and make it the default ( #8791 )
2022-05-05 14:10:43 -07:00
Elif Akyıldırım
0d6ea85167
Assert that IP range is enough for the nodes ( #8720 )
...
* Assert that IP range is enough for the nodes
Co-authored-by: Necatican Yıldırım <necaticanyildirim@gmail.com>
* Fixed whitespace
* Fixed errors
* Fixed errors
Co-authored-by: Necatican Yıldırım <necaticanyildirim@gmail.com>
2022-05-05 08:48:20 -07:00
Florian Ruynat
674ec92224
Add crictl 1.24 for new k8s version ( #8787 )
2022-05-05 08:40:22 -07:00
Victor Morales
e7e5037a86
Add a container_manager validation ( #8785 )
2022-05-04 23:58:19 -07:00
Kenichi Omichi
fbcf426240
Drop containerd 1.4 support ( #8780 )
...
The version 1.4 of containerd has been End of Life since March 3, 2022
as https://containerd.io/releases/#support-horizon
It is nice to drop the support from Kubespray also to follow containerd.
2022-05-04 23:02:20 -07:00
Mohamed Zaian
2301554e98
[kubernetes] add hashes for 1.24.0 ( #8783 )
2022-05-04 22:58:21 -07:00
Calin Cristian Andrei
5bc35002ba
[remove-etcd-node] fix json path query
2022-05-04 06:35:51 -07:00
Calin Cristian Andrei
8f118fb619
[reset] fix task inclusion logic for network plugin
2022-05-04 06:35:51 -07:00
Calin Cristian Andrei
1113460b68
[cri-o] molecule switch from ubuntu 18 to ubuntu 20
2022-05-04 14:46:17 +02:00
Lubos Mercl
c20ab7d987
add fix for GCP CSI driver ( #8616 )
...
Signed-off-by: Lubos Mercl <lubos.mercl@gmail.com>
2022-05-03 08:55:56 -07:00
Cristian Calin
9605bbaa67
[nerdctl] upgrade to 0.19.0 ( #8772 )
2022-05-03 05:39:56 -07:00
Kenichi Omichi
c04a73c11a
Update containerd version to 1.6.3 ( #8770 )
...
containerd version 1.6.3 has been released as [1]
This adds the checksums and makes Kubespray use it.
[1]: https://github.com/containerd/containerd/releases/tag/v1.6.3
2022-05-02 22:43:55 -07:00
bilalcaliskan
26a0b0f1e8
chore(flannel): change flannel repository and upgrade image version ( #8740 )
...
* chore: change flannel repository and upgrade image version
* docs: upgrade flanneld version
2022-05-02 11:29:14 -07:00
Alessio Greggi
fa1d222eee
add support for EventRateLimit
plugin configuration ( #8711 )
...
* feat: add support for EventRateLimit admission plugin
* docs: add documentation about admission_control_config_file and EventRateLimit configuration
2022-05-02 11:03:15 -07:00
Cristian Calin
56cf163a23
[kubernetes] actually make 1.23.6 the default ( #8767 )
2022-05-02 00:43:14 -07:00
Mohamed Zaian
afcedf6d77
Pull master, Rebase, add changes again ( #8745 )
2022-05-02 00:39:14 -07:00
Chris Ricker
21fc197ee0
Ensure containerd service unmasking ( #8726 )
...
* Force containerd service unmasking
Force systemd to unmask and start service when adding containerd service
* Eliminate restart and move unmasking step
Switch to start instead of restart
Move unmasking to restart handler
* Add unmasking to similar container runtimes
* Add missing service names
2022-04-29 08:39:14 -07:00
Calin Cristian Andrei
b6e2c56ae6
[kubernetes] add hashes for 1.21.12
2022-04-29 07:57:13 -07:00
Calin Cristian Andrei
b005985d4e
[kubernetes] add hashes for 1.23.6
2022-04-29 07:57:13 -07:00
Samuel Liu
1294fd5730
check calico ipv6 ( #8738 )
...
* check calico ipv6
* just check ipip mode for ipv6
2022-04-29 00:35:13 -07:00
Mohamed Zaian
b7004d72c5
[kubernetes] add hashes for 1.22.9 ( #8746 )
...
* [kubernetes] add hashes for 1.22.9
2022-04-28 16:10:50 +03:00
Kenichi Omichi
eb566ca626
Remove aufs-tools from Ubuntu requirement ( #8754 )
...
aufs-tools was required for docker.io package originally,
but Kubespray installs docker-ce package instead today.
In addition, Ubuntu 20.04 doesn't provide aufs-tools as [1].
Then this removes aufs-tools from Ubuntu requirement.
[1]: https://bugs.launchpad.net/ubuntu/+source/aufs-tools/+bug/1947004
2022-04-27 23:04:55 -07:00
Mulugeta Ayalew Tamiru
3f065918d9
Update verbs for volumeattachments resource ( #8731 )
...
* Update verbs for volumeattachments resource
Update verbs for volumeattachments resource so that the kubelet can create volumeattachments and mount volumes when deploying Kubernetes on VMware vSphere.
* Update verbs for volumeattachments resource
Update verbs for volumeattachments resource to match upstream
* Update vsphere-csi-controller-rbac.yml.j2
2022-04-22 00:04:13 -07:00
Cristian Calin
2c2d4513ac
[helm] upgrade to 3.8.2 ( #8723 )
2022-04-18 12:51:50 -07:00
zhengtianbao
937e64d296
Update flannel use install-cni-plugin to fit upstream ( #8714 )
...
* Update flannel use install-cni-plugin to fit upstream
* Replace flannel cni repo
* Remove download flannel binary
2022-04-18 09:44:41 -07:00
Cristian Calin
3261d26181
[etcd] ensure etcd is properly upgraded when managed by kubeadm ( #8722 )
...
* [etcd] ensure etcd is properly upgraded when managed by kubeadm
* [CI] add periodic job to test upgrade of etcd managed by kubeadm
2022-04-17 10:32:41 -07:00
Mathieu Parent
c98a0a448f
metallb: Add images to downloads ( #8715 )
...
For offline mode
2022-04-14 10:06:46 -07:00
Mohamed Zaian
7e7218f5ce
etcd: add etcd v3.5.3 for kubernetes 1.21+ ( #8712 )
...
* As per this issue https://github.com/kubernetes-sigs/kubespray/pull/8664 I propose to make etcd v.3.5.3 default for any kubernetes version which uses 3.5.x since that 3.5.[0-2] not recommended for production.
2022-04-14 05:48:46 -07:00
Cristian Calin
45262da726
[calico] call calico checks early on to prevent altering the cluster with bad configuration ( #8707 )
2022-04-14 01:08:46 -07:00