richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8068 Commits
33 Branches
82 Tags
154 MiB
Tree: 2be54b2bd7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2be54b2bd7'
${ noResults }
kubespray/tests/testcases/040_check-network-adv.yml

161 lines
5.4 KiB
Raw Normal View History

Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Resolve ansible-lint name errors (#10253) * project: fix ansible-lint name Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: ignore jinja template error in names Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: capitalize ansible name Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: update notify after name capitalization Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
1 year ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix E306 in tests/ (#6495)
4 years ago
CI: remove shell usage for test playbooks General cleanup + has the advantages of not requiring bash on the hosts.
4 months ago
Fix ansible syntax to avoid ansible warnings (#3499)
6 years ago
Refactor: simpify cloud_provider is defined condition For this change, `cloud_provider` change the default value to empty string. Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
3 months ago
project: fix var-spacing ansible rule (#10266) * project: fix var-spacing ansible rule Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing on the beginning/end of jinja template Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing of default filter Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing between filter arguments Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix double space at beginning/end of jinja Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix remaining jinja[spacing] ansible-lint warning Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
1 year ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
CI: remove shell usage for test playbooks General cleanup + has the advantages of not requiring bash on the hosts.
4 months ago
Resolve ansible-lint name errors (#10253) * project: fix ansible-lint name Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: ignore jinja template error in names Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: capitalize ansible name Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: update notify after name capitalization Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
1 year ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
CI: Remove Flatcar specifics We don't test Flatcar at all in CI, thus remove special handling for it.
2 months ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Fix outdated tag and experimental ansible-lint rules (#10254) * project: fix outdated tag and experimental Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: remove no longer useful noqa 301 Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: replace unnamed-task by name[missing] Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix daemon-reload -> daemon_reload Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
1 year ago
Add cluster dump artifact in CI jobs (#5796)
4 years ago
Fix E306 in tests/ (#6495)
4 years ago
CI: remove shell usage for test playbooks General cleanup + has the advantages of not requiring bash on the hosts.
4 months ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
Replace kube-master with kube_control_plane (#7256) This replaces kube-master with kube_control_plane because of [1]: The Kubernetes project is moving away from wording that is considered offensive. A new working group WG Naming was created to track this work, and the word "master" was declared as offensive. A proposal was formalized for replacing the word "master" with "control plane". This means it should be removed from source code, documentation, and user-facing configuration from Kubernetes and its sub-projects. NOTE: The reason why this changes it to kube_control_plane not kube-control-plane is for valid group names on ansible. [1]: https://github.com/kubernetes/enhancements/blob/master/keps/sig-cluster-lifecycle/kubeadm/2067-rename-master-label-taint/README.md#motivation
3 years ago
Fix random failure in debug: var=result.content|from_json (#4094) * Fix random failure in debug: var=result.content|from_json * netchecker agents are deployed on all k8s-cluster group members * reducing limits/requests is not enough, switching to n1-standard-2 * gce_centos7 need more cpu
6 years ago
Fix Ansible-lint error [E502] (#4743)
5 years ago
Fix random failure in debug: var=result.content|from_json (#4094) * Fix random failure in debug: var=result.content|from_json * netchecker agents are deployed on all k8s-cluster group members * reducing limits/requests is not enough, switching to n1-standard-2 * gce_centos7 need more cpu
6 years ago
Replace kube-master with kube_control_plane (#7256) This replaces kube-master with kube_control_plane because of [1]: The Kubernetes project is moving away from wording that is considered offensive. A new working group WG Naming was created to track this work, and the word "master" was declared as offensive. A proposal was formalized for replacing the word "master" with "control plane". This means it should be removed from source code, documentation, and user-facing configuration from Kubernetes and its sub-projects. NOTE: The reason why this changes it to kube_control_plane not kube-control-plane is for valid group names on ansible. [1]: https://github.com/kubernetes/enhancements/blob/master/keps/sig-cluster-lifecycle/kubeadm/2067-rename-master-label-taint/README.md#motivation
3 years ago
Fix random failure in debug: var=result.content|from_json (#4094) * Fix random failure in debug: var=result.content|from_json * netchecker agents are deployed on all k8s-cluster group members * reducing limits/requests is not enough, switching to n1-standard-2 * gce_centos7 need more cpu
6 years ago
CI: remove shell usage for test playbooks General cleanup + has the advantages of not requiring bash on the hosts.
4 months ago
Fix random failure in debug: var=result.content|from_json (#4094) * Fix random failure in debug: var=result.content|from_json * netchecker agents are deployed on all k8s-cluster group members * reducing limits/requests is not enough, switching to n1-standard-2 * gce_centos7 need more cpu
6 years ago
CI: Use the debug stdout callback instead of manual debug This display in a readable (by humans) way the result of most tasks, and should be way more readable that what we have now, which is frequently a bunch of unreadable json. + some small fixes (using delegated_to instead of when <control_plane_host>)
2 months ago
Enable netchecker for CI * Enable netchecker app for CI postinstall tests * Rework outputs and better coverage to the ping between pods post intall test case. With netchecker deployed, the test covers hostnet to hostnet and standard to standrad pods ping check as well. Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
8 years ago
[calico] don't enable ipip encapsulation by default and use vxlan in CI (#8434) * [calico] make vxlan encapsulation the default * don't enable ipip encapsulation by default * set calico_network_backend by default to vxlan * update sample inventory and documentation * [CI] pin default calico parameters for upgrade tests to ensure proper upgrade * [CI] improve netchecker connectivity testing * [CI] show logs for tests * [calico] tweak task name * [CI] Don't run the provisioner from vagrant since we run it in testcases_run.sh * [CI] move kube-router tests to vagrant to avoid network connectivity issues during netchecker check * service proxy mode still fails connectivity tests so keeping it manual mode * [kube-router] account for containerd use-case
2 years ago
CI: Use the debug stdout callback instead of manual debug This display in a readable (by humans) way the result of most tasks, and should be way more readable that what we have now, which is frequently a bunch of unreadable json. + some small fixes (using delegated_to instead of when <control_plane_host>)
2 months ago
[calico] don't enable ipip encapsulation by default and use vxlan in CI (#8434) * [calico] make vxlan encapsulation the default * don't enable ipip encapsulation by default * set calico_network_backend by default to vxlan * update sample inventory and documentation * [CI] pin default calico parameters for upgrade tests to ensure proper upgrade * [CI] improve netchecker connectivity testing * [CI] show logs for tests * [calico] tweak task name * [CI] Don't run the provisioner from vagrant since we run it in testcases_run.sh * [CI] move kube-router tests to vagrant to avoid network connectivity issues during netchecker check * service proxy mode still fails connectivity tests so keeping it manual mode * [kube-router] account for containerd use-case
2 years ago
CI: Use the debug stdout callback instead of manual debug This display in a readable (by humans) way the result of most tasks, and should be way more readable that what we have now, which is frequently a bunch of unreadable json. + some small fixes (using delegated_to instead of when <control_plane_host>)
2 months ago
[calico] don't enable ipip encapsulation by default and use vxlan in CI (#8434) * [calico] make vxlan encapsulation the default * don't enable ipip encapsulation by default * set calico_network_backend by default to vxlan * update sample inventory and documentation * [CI] pin default calico parameters for upgrade tests to ensure proper upgrade * [CI] improve netchecker connectivity testing * [CI] show logs for tests * [calico] tweak task name * [CI] Don't run the provisioner from vagrant since we run it in testcases_run.sh * [CI] move kube-router tests to vagrant to avoid network connectivity issues during netchecker check * service proxy mode still fails connectivity tests so keeping it manual mode * [kube-router] account for containerd use-case
2 years ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
CI: remove shell usage for test playbooks General cleanup + has the advantages of not requiring bash on the hosts.
4 months ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
Update cni spec to 0.4.0 for network plugin allowing it (#6053)
4 years ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
CI: remove shell usage for test playbooks General cleanup + has the advantages of not requiring bash on the hosts.
4 months ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
CI: Use the debug stdout callback instead of manual debug This display in a readable (by humans) way the result of most tasks, and should be way more readable that what we have now, which is frequently a bunch of unreadable json. + some small fixes (using delegated_to instead of when <control_plane_host>)
2 months ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
project: fix var-spacing ansible rule (#10266) * project: fix var-spacing ansible rule Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing on the beginning/end of jinja template Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing of default filter Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing between filter arguments Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix double space at beginning/end of jinja Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix remaining jinja[spacing] ansible-lint warning Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
1 year ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
Fix ansible-lint E305 (#6459)
4 years ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
CI: Use the debug stdout callback instead of manual debug This display in a readable (by humans) way the result of most tasks, and should be way more readable that what we have now, which is frequently a bunch of unreadable json. + some small fixes (using delegated_to instead of when <control_plane_host>)
2 months ago
Adds support for Multus (multiple interfaces) CNI plugin (#3166) * Adds support for Multus (multiple interfaces) CNI plugin Multus is a latin word for "Multi". As the name suggests, it acts as a Multi plugin in Kubernetes and provides multiple network interface support in a pod. Multus uses the concept of invoking delegates by grouping multiple plugins into delegates and invoking them in the sequential order of the CNI configuration file provided in json format. * Change CNI version (0.1.0->0.3.1) of Contiv to be compatible with Multus
6 years ago
project: fix var-spacing ansible rule (#10266) * project: fix var-spacing ansible rule Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing on the beginning/end of jinja template Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing of default filter Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix spacing between filter arguments Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix double space at beginning/end of jinja Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> * project: fix remaining jinja[spacing] ansible-lint warning Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch> --------- Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
1 year ago
  1. ---
  2. - name: Testcases for calico
  3. hosts: kube_node
  4. tasks:
  5. - name: Test tunl0 routes
  6. command: "/sbin/ip route"
  7. register: routes
  8. failed_when: routes.stdout_lines
  9. | select('contains', '/' ~ calico_pool_blocksize|d(26))
  10. | select('contains', 'tunl0') | length == 0
  11. when:
  12. - (calico_ipip_mode is defined and calico_ipip_mode != 'Never')
  13. - kube_network_plugin | default('calico') == 'calico'
  16. - name: Advanced testcases for network
  17. hosts: k8s_cluster
  18. vars:
  19. agent_report_interval: 10
  20. netcheck_namespace: default
  21. netchecker_port: 31081
  22. bin_dir: "/usr/local/bin"
  24. tasks:
  25. - import_role: # noqa name[missing]
  26. name: cluster-dump
  28. - name: Wait for netchecker server
  29. command: "{{ bin_dir }}/kubectl get pods --field-selector=status.phase==Running -o jsonpath-as-json={.items[*].metadata.name} --namespace {{ netcheck_namespace }}"
  30. register: pods_json
  31. until:
  32. - pods_json.stdout | from_json | select('match', 'netchecker-server.*') | length == 1
  33. - (pods_json.stdout | from_json | select('match', 'netchecker-agent.*') | length)
  34. >= (groups['k8s_cluster'] | intersect(ansible_play_hosts) | length * 2)
  35. retries: 3
  36. delay: 10
  37. when: inventory_hostname == groups['kube_control_plane'][0]
  39. - name: Get netchecker pods
  40. command: "{{ bin_dir }}/kubectl -n {{ netcheck_namespace }} describe pod -l app={{ item }}"
  41. run_once: true
  42. delegate_to: "{{ groups['kube_control_plane'][0] }}"
  43. with_items:
  44. - netchecker-agent
  45. - netchecker-agent-hostnet
  46. when: not pods_json is success
  48. - name: Perform netchecker tests
  49. run_once: true
  50. delegate_to: "{{ groups['kube_control_plane'][0] }}"
  51. block:
  52. - name: Get netchecker agents
  53. uri:
  54. url: "http://{{ ansible_default_ipv4.address }}:{{ netchecker_port }}/api/v1/agents/"
  55. return_content: true
  56. headers:
  57. Accept: application/json
  58. register: agents
  59. retries: 18
  60. delay: "{{ agent_report_interval }}"
  61. until:
  62. - agents is success
  63. - (agents.content | from_json | length) == (groups['k8s_cluster'] | length * 2)
  65. - name: Check netchecker status
  66. uri:
  67. url: "http://{{ ansible_default_ipv4.address }}:{{ netchecker_port }}/api/v1/connectivity_check"
  68. return_content: true
  69. headers:
  70. Accept: application/json
  71. register: connectivity_check
  72. retries: 3
  73. delay: "{{ agent_report_interval }}"
  74. until:
  75. - connectivity_check is success
  76. - connectivity_check.content | from_json
  78. rescue:
  79. - name: Get kube-proxy logs
  80. command: "{{ bin_dir }}/kubectl -n kube-system logs -l k8s-app=kube-proxy"
  82. - name: Get logs from other apps
  83. command: "{{ bin_dir }}/kubectl -n kube-system logs -l k8s-app={{ item }} --all-containers"
  84. with_items:
  85. - kube-router
  86. - flannel
  87. - canal-node
  88. - calico-node
  89. - cilium
  91. - name: Netchecker tests failed
  92. fail:
  93. msg: "netchecker tests failed"
  95. - name: Check connectivity with all netchecker agents
  96. vars:
  97. connectivity_check_result: "{{ connectivity_check.content | from_json }}"
  98. agents_check_result: "{{ agents.content | from_json }}"
  99. assert:
  100. that:
  101. - agents_check_result is defined
  102. - connectivity_check_result is defined
  103. - agents_check_result.keys() | length > 0
  104. - not connectivity_check_result.Absent
  105. - not connectivity_check_result.Outdated
  106. msg: "Connectivity check to netchecker agents failed"
  107. delegate_to: "{{ groups['kube_control_plane'][0] }}"
  108. run_once: true
  110. - name: Create macvlan network conf
  111. command:
  112. cmd: "{{ bin_dir }}/kubectl create -f -"
  113. stdin: |
  114. apiVersion: "k8s.cni.cncf.io/v1"
  115. kind: NetworkAttachmentDefinition
  116. metadata:
  117. name: macvlan-conf
  118. spec:
  119. config: '{
  120. "cniVersion": "0.4.0",
  121. "type": "macvlan",
  122. "master": "eth0",
  123. "mode": "bridge",
  124. "ipam": {
  125. "type": "host-local",
  126. "subnet": "192.168.1.0/24",
  127. "rangeStart": "192.168.1.200",
  128. "rangeEnd": "192.168.1.216",
  129. "routes": [
  130. { "dst": "0.0.0.0/0" }
  131. ],
  132. "gateway": "192.168.1.1"
  133. }
  134. }'
  135. ---
  136. apiVersion: v1
  137. kind: Pod
  138. metadata:
  139. name: samplepod
  140. annotations:
  141. k8s.v1.cni.cncf.io/networks: macvlan-conf
  142. spec:
  143. containers:
  144. - name: samplepod
  145. command: ["/bin/bash", "-c", "sleep 2000000000000"]
  146. image: dougbtv/centos-network
  147. delegate_to: groups['kube_control_plane'][0]
  148. run_once: true
  149. when:
  150. - kube_network_plugin_multus | default(false) | bool
  152. - name: Check secondary macvlan interface
  153. command: "{{ bin_dir }}/kubectl exec samplepod -- ip addr show dev net1"
  154. register: output
  155. until: output.rc == 0
  156. retries: 90
  157. changed_when: false
  158. delegate_to: groups['kube_control_plane'][0]
  159. run_once: true
  160. when:
  161. - kube_network_plugin_multus | default(false) | bool