d5b2a9b5ba
opensuse: move package installation to system_packages
No reason to special case
4 months ago
2152022926
debian-based distro: handle apt update cache when installing packages
The package module pass options to the underlying packages manager
module if they support it. No need to handle it in bootstrap.
4 months ago
f13b80cac0
ClearLinux: remove special casing
- put package install in system_packages
- docker should be handled by the approriate roles if used as container
engine
4 months ago
a87b86c6d3
Make main_ip cacheable in facts ( #12243 )
4 months ago
85b0be144a
Fix: check expiry before do breaking renew and container restart actions ( #12194 )
* Fix: check expiraty before renew
Since certificate renewal and container restarts involve higher risks,
they should be executed with extra caution.
* squash to Fix: check expiraty before renew
* squash to Fix: address more comments from VannTen
Signed-off-by: Peter Pan <Peter.Pan@daocloud.io>
---------
Signed-off-by: Peter Pan <Peter.Pan@daocloud.io>
4 months ago
6f7822d25c
[flannel] upgrade to 0.26.7 ( #12260 )
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
4 months ago
ce26f17e9e
fix unquoted san cert causing issues with ips ( #12256 )
4 months ago
a9f600ffa2
Import centos bootstrap os task for Alma/Rocky Linux ( #12264 )
4 months ago
3454cd2c69
feat: Support certificate validity period config in kubeadm v1beta4 ( #12272 )
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
4 months ago
c89c34f4d6
Update load balancers versions to Nginx 1.28.0, Haproxy 3.1.7 ( #12178 )
4 months ago
92e8ac9de2
Remove tag 'master' ( #12228 )
* Remove tag master
Following it's deprecation in 4b324cb0f#11394 ), 2024-09-06)
* Add fail fast path when using removed tags
- Used for the master tag, but this could be used for other things in
the future
4 months ago
73b3e9b557
Removed weave support ( #12230 )
4 months ago
490dece3bf
Cleanup assert after 2.28 ( #12245 )
Users should have used 2.28 and adapted their inventories now.
4 months ago
16c05338d9
Update cri-o to 1.33.0 for kubernetes 1.33
Use ubuntu 22.04 for molecule test of cri-o,
because crun included in the cri-o does not work on
ubuntu 20.04.
5 months ago
8ad1253b4f
[kubernetes] Support kubernetes 1.33.1
- Add checksum entries.
- Set min required version to Kubernetes 1.31.x
- Update supported versions
- Refactor coredns_version
4 months ago
6c5c45b328
Allow stopping ubuntu unattended-upgrades ( #12174 )
Signed-off-by: Ekko Tu <lihai.tu@daocloud.io>
4 months ago
1266527014
Add cilium cli binary hash before 0.18.3
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
4 months ago
5e2e63ebe3
Make cilium dnsProxy transparent mode configure
When Cilium is configured to replace kube-proxy, it automatically
enables dnsProxy, which can conflict with nodelocaldns.
4 months ago
db290ca686
Add cilium gateway api support
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
4 months ago
6619d98682
Add cilium hubble export dynamic content
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
4 months ago
b771d73fe0
Add cilium hubble export file max backups & size mb
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
4 months ago
65751e8193
Add cilium operator tolerations default values
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
4 months ago
4c16fc155f
Cilium values k8sServiceHost and k8sServicePort use auto
Signed-off-by: ChengHao Yang
<17496418+tico88612@users.noreply.github.com>
5 months ago
dcd3461bce
Cilium values use image variables
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
5 months ago
48f75c2c2b
Upgrade Cilium related images
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
5 months ago
a4b73c09a7
Upgrade cilium version to 1.17.3
Signed-off-by: ChengHao Yang
<17496418+tico88612@users.noreply.github.com>
6 months ago
86437730de
Use cilium-cli install Cilium
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
6 months ago
6fe64323db
Remove old cilium templates install
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
6 months ago
1e471d5eeb
Upgrade outdated cilium_min_version_required
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
6 months ago
3a2862ea19
Move checksums to kubespray_defaults/vars ( #12234 )
The checksums are not a defaults and are not meant to be changed from
the inventories.
Furthermore, role defaults have a lower priority that hosts facts, which
technically means a rogue hosts could hijack the hashes for its
variables.
4 months ago
46a0dc9a51
Add support for hubble-export-file-max-backups and max-size-mb variables ( #12072 )
* feat(cilium): add configurable Hubble export log rotation parameters
- Adds support for `cilium_hubble_export_file_max_backups` and `cilium_hubble_export_file_max_size_mb`
- Applies values only if `cilium_hubble_export_file_path` is defined
- Default values are set in role defaults
- Cleans up template logic by removing unnecessary conditionals
* Fix indentation for hubble export settings
* Fix undefined variable issue with ipwrap in kubeconfig override that caused pre-commit errors
* Update main.yml
rollback
4 months ago
faae36086c
Patch versions updates ( #12226 )
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
4 months ago
9c2bdeec63
Decouple etcd defaults in a separate role
This allows us to reuse the defaults in other places without putting
everything in kubespray-defaults.
In that, for kubernetes/control-plane.
4 months ago
e4c0c427a3
improve NTP package conflict handling ( #12212 )
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
4 months ago
5c07c6e6d3
Add option to [not] install coredns via Kubespray ( #12218 )
4 months ago
c6dfe22a41
Improve logging of kubeadm init failure of first control plane node ( #12216 )
Split retry task of 'kubeadm init' to show the failure log of
the first execution.
4 months ago
ec85b7e2c9
download: respect enable_dns_autoscaler when enabling dnsautoscaler ( #12217 )
dnsautoscaler should only be enabled when enable_dns_autoscaler is
set to true. without this, it could be enabled without any manifest
actually using it, which makes it a false signal.
Signed-off-by: Seena Fallah <seenafallah@gmail.com>
4 months ago
22d3cf9c2b
Move 'pretend certificates' **after** cert distribution
The link target will only exist after we distribute the certs on each node.
4 months ago
2c3b6c9199
feat: add trigger to restart kube-apiserver when config files change ( #12172 )
* feat: add trigger to restart kube-apiserver when config files change
* fix: remove not upgrade_cluster_setup condition
* refactor: streamline kube-apiserver restart notifications
4 months ago
a55932e1de
Patch versions updates ( #12204 )
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
4 months ago
973bd2e520
Stop cleaning up containerd packages ( #12213 )
The switch to not use system packages for containerd packages happened
multiples releases ago ; there should not be any up-to-date installation
of kubespray needing that cleanup.
Remove those steps and variables only used by them.
4 months ago
8cc5694580
calico: update calico-kube-controller manifest ( #12169 )
4 months ago
1d15baf405
Add compat and deprecation warning for boostrap-os
4 months ago
47508d5c6e
Rename bootstrap-os to bootstrap_os
Role names in ansible collections should not have hyphens.
4 months ago
2a1ae14275
Compat layer remove-node/pre-remove
4 months ago
e361def9cd
Rename remove-node/pre-remove (no hypens for role in collection)
4 months ago
fa6888df4c
kubernetes_audit: Remove redundant defaults filter ( #12208 )
4 months ago
9bbd597e20
create cilium_operator_tolerations variable in group_var ( #12200 )
- This enables ithe override of the tolerations for the cilium-operator deployment
- default behaviour is to leave the toleration as is unless the var is set
4 months ago
fceb1516b8
Update: add Cilium LB IP Pool configuration to support ranges ( #12140 )
4 months ago
4052cd5237
Add compat and deprecation warning for kubespray-defaults
4 months ago
Max Gautier
Shuu
Peter Pan
ChengHao Yang
Imran Ahmed
Christos Papageorgiou
ERIK
Ali Afsharzadeh
Anshuman Agarwala
Takuya Murakami
Ekko
ErmolenkoMaxim
Antoine Legrand
Seena Fallah
Hyeonki Hong
Cyclinder
felipe88alves
Cheolhui Kim