Commit graph

524 commits

Author SHA1 Message Date
Hans Feldt
04b19359cb
allow non existing etcd group ()
When using kubeadm managed etcd, configuring an etcd group can now
be skipped.
2020-10-21 07:32:20 -07:00
Florian Ruynat
a687013fbe
Update kube-router to 1.1.0 () 2020-10-05 13:46:20 -07:00
emiran-orange
081a9e7bd8
/opt/cni/bin/install not before calico 3.16 () 2020-09-25 06:15:11 -07:00
Hans Feldt
28073c76ac
Calico upgrade path validation and old version cleanup ()
* calico: add constant calico_min_version_required

and verify current deployed version against it.

* calico: remove upgrade support with data migration

The tool was used pre v3.0.0 and is no longer needed.

* calico: remove old version support from tasks

* calico: remove old ver support from policy ctrl

* calico: remove old ver support from node

* canal: remove old ver support

* remove unused calicoctl download checksums

calico_min_version_required is the oldest version that can be installed
Older versions can be removed.
2020-09-24 09:04:06 -07:00
Marco Martínez
5c448b6896
Add retries to update calico-rr data in etcd through calicoctl ()
* Add retries to update calico-rr data in etcd through calicoctl

* Update update-node yaml syntax

* Add comment to clarify ansible block loop

* Remove trailing space
2020-09-24 03:24:05 -07:00
Hans Feldt
6141b98bf8
calico: default to using kdd datastore ()
If already deployed, get current datastore from CNI config file
2020-09-23 08:38:09 -07:00
David Louks
1e79dcfcaa
Added ability to set calico vxlan vni and port. defaults to calico's … ()
* Added ability to set calico vxlan vni and port. defaults to calico's documented defaults.

* Check if calico_network_backend is defined prior to checking value

* Removed calico hidden defaults for vxlan port and vni

* Fixed FELIX_VXLANVNI typo
2020-09-22 01:04:48 -07:00
Victor Morales
0d0cc8cf9c
Add multi architeture support to flannel ()
Signed-off-by: Victor Morales <v.morales@samsung.com>
2020-09-22 00:44:47 -07:00
Sebastian
9ce34be217
Added missing permissions for operator. ()
Related commit: 976337b750
2020-09-18 02:12:45 -07:00
Barry Melbourne
b6b26c710f
Add support for Calico CNI host-local IPAM plugin () 2020-09-17 02:44:46 -07:00
Florian Ruynat
1712ba1198
Add iptables_backend to weave options () 2020-09-10 03:49:52 -07:00
Florian Ruynat
ae5328c500
Update calico to 3.16.1 () 2020-09-10 03:45:46 -07:00
Florian Ruynat
050578da94
Update Cilium to 1.8.3 () 2020-09-07 02:11:49 -07:00
Maxim Pogozhiy
0553814b4f
Add selectable dns policy for kube-router () 2020-09-04 04:53:41 -07:00
Hans Feldt
93698a8f73
Calico: update crds to v1 and cr ()
* Update CustomResourceDefinition for kubecontrollersconfigurations.crd.projectcalico.org to v1
* Align ClusterRole for kube-controllers with upstream (calico)
2020-09-03 00:51:40 -07:00
Maxime Guyot
6245587dc8
Fix E306 in roles/network_plugin ()
Signed-off-by: Miouge1 <maxime@root314.com>
2020-09-02 23:55:40 -07:00
Maxime Guyot
34d88ea6d9
Fix Ansible-lint E303 () 2020-08-31 03:30:20 -07:00
Barry Melbourne
058438a25d
Remove support for CoreOS Container Linux () 2020-08-28 02:28:53 -07:00
nic0las
f59d3fc4a3
Deviceroutesourceaddress ()
* add FELIX_DEVICEROUTESOURCEADDRESS calico option

* add calico_use_default_route_src_ipaddr option 

add calico_use_default_route_src_ipaddr option to use FELIX_DEVICEROUTESOURCEADDRESS calico option

* Update k8s-net-calico.yml
2020-08-27 02:07:01 -07:00
Arthur Outhenin-Chalandre
e6dae03a0d
Add cilium hubble server in config ()
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-08-26 23:19:02 -07:00
Florian Ruynat
6e2b8a5750
Add timeout to Get current version of calico cluster version, again () 2020-08-21 00:13:51 -07:00
Florian Ruynat
98f7485303
Update weave to 2.7.0 + minor update to Cilium () 2020-08-20 04:33:36 -07:00
Arthur Outhenin-Chalandre
ca8e59fa85
Add new cilium options for native routing ()
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-08-18 00:39:42 -07:00
Arthur Outhenin-Chalandre
bedb411d06
improve Cilium metrics support ()
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-08-18 00:35:29 -07:00
Arthur Outhenin-Chalandre
35682b5228
Fix cilium strict kube proxy replacement in HA ()
* Update the cilium svc proxy test to HA mode

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Fix cilium strict kube-proxy in HA

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Add a single global endpoint variable

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Add cilium docs about kube-proxy replacement

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Fix issues in docs

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-08-06 00:14:55 -07:00
Florian Ruynat
24a7878e7c
Update kube-router to 1.0.1 and kube-ovn to 1.3.0 () 2020-08-01 00:34:04 -07:00
Kuralamudhan Ramakrishnan
90e5f8ffe1
adding ovn4nfv in kubespray ()
Signed-off-by: Kuralamudhan Ramakrishnan <kuralamudhan.ramakrishnan@intel.com>
2020-07-31 07:33:08 -07:00
Arthur Outhenin-Chalandre
3550e3c145
Adding kube-proxy-replacement support in cilium ()
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-07-30 02:46:31 -07:00
Maxime Guyot
fe46349786
Fix ansible-lint E301 for commands fetching data () 2020-07-28 08:39:47 -07:00
Maxime Guyot
214e08f8c9
Fix ansible-lint E305 () 2020-07-28 01:39:08 -07:00
Maxime Guyot
8bd3b50e31
Fix ansible-lint E404 () 2020-07-28 01:21:08 -07:00
Maxime Guyot
e70f27dd79
Add noqa and disable .ansible-lint global exclusions () 2020-07-27 06:24:17 -07:00
Florian Ruynat
c9f63e5016
Update multus version & crio conf () 2020-07-26 23:36:16 -07:00
Konstantin Lebedev
4b80a7f6fe
Felix configuration via extraenvs of calico node () 2020-07-22 00:08:04 -07:00
Minjong Kim
b19f2e2d3d
Update the calico_veth_mtu setting to affect IP-in-IP users ()
* Update calico_veth_mtu to FELIX_IPINIP variable

calico_veth_mtu is specified in the configuration, but since it only works for wireguard, modify it to work for IP-in-IP users.

* Update template with more cleaner expression
2020-07-21 23:58:18 -07:00
Florent Monbillard
bf8c8976dd
Upgrade etcd to 3.4.3 () 2020-07-20 07:26:51 -07:00
Arthur Outhenin-Chalandre
1a1fe99669
Add a way to deploy cilium alongside another CNI ()
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-07-17 05:57:01 -07:00
chenguoquan1024
e1873ab872
add calico-node selinux () 2020-07-15 00:22:38 -07:00
Pasquale Toscano
4ce970c0b2
Cilium: overwrite auto-detected MTU of underlying network () 2020-07-02 07:12:47 -07:00
nurekage
017df7113d
Patch Calico for V3.14.0 missing CR and CRD () 2020-07-01 08:44:16 -07:00
Florian Ruynat
16ec5939c2
Update deprecated api () 2020-06-30 09:00:07 -07:00
Florian Ruynat
b064274e27
Update kube-router to 1.0.0 () 2020-06-30 08:54:06 -07:00
Florian Ruynat
8213b1802b
Update calico to 1.15.0 + minor update to kube-ovn/weave () 2020-06-29 14:39:58 -07:00
Joel Seguillon
4c1e0b188d
Add .editorconfig file () 2020-06-29 12:39:59 -07:00
Florian Ruynat
f54f63ec3f
Update cilium to 1.8.0 () 2020-06-25 06:16:38 -07:00
Alexander Evseev
5a311236c4
Enable portmap CNI plugin with kube-router ()
... to have working `hostPort` for containers.

See: https://www.kube-router.io/docs/user-guide/#hostport-support
2020-06-10 10:08:52 -07:00
Yousong Zhou
a7b8708dfc
calico: use absolute path to docker, crictl binary ()
To avoid the following error (ignored when pipefail is off)

  RUNNING HANDLER [network_plugin/calico : containerd | delete calico-node containers] *******************************************************************************
  changed: [node1] => {"attempts": 1, "changed": true, "cmd": "crictl pods --name calico-node-* -q | xargs -I% --no-run-if-empty bash -c \"crictl stopp % && crictl rmp %\"", "delta": "0:00:00.004240", "end": "2020-06-10 03:32:41.316955", "rc": 0, "start": "2020-06-10 03:32:41.312715", "stderr": "/bin/sh: crictl: command not found", "stderr_lines": ["/bin/sh: crictl: command not found"], "stdout": "", "stdout_lines": []}
2020-06-10 03:22:08 -07:00
Florian Ruynat
ecc3a0aec5
Update kube-ovn to 1.2.0 - also update minor version for multus and weave () 2020-06-09 12:09:01 -07:00
Florian Ruynat
101686c665
Remove outdated CriticalAddonsOnly toleration and critical-pod annotation () 2020-06-09 05:23:30 -07:00
Flavien
7ff8fc259b
Support all taints in network plugins manifests ()
flannel, ovn and multus network plugins did not support all taint keys. This
update changes the tolerations to support them all.

According to the documentation:

```
There are two special cases: An empty key with operator Exists matches all keys,
values and effects which means this will tolerate everything. An empty effect matches
all effects with key key.
```

Usage of the empty `key` and `effect` ensures the network plugin daemonset will
be deployed on every nodes (ex: in case of custom taints, or NoExecute effect)
2020-06-02 05:38:15 -07:00