7aa415e707
fix-container-selinux-amzn-linux ( #11182 )
11 months ago
cd459a04f3
Revert OCCM standard dnsPolicy to ClusterFirst and make dnsPolicy configurable to support 10618 ( #11168 )
11 months ago
a512b861e0
[etcd/tracing]: fix etcd sampling rate flag ( #11175 )
Signed-off-by: Ugur Ozturk <ugurozturk918@gmail.com>
11 months ago
d870a3ee4e
Avoid potential loop_var shadowing ( #11162 )
With CentOS, kubespray currently produces the following warning:
[WARNING]: TASK: bootstrap-os : Enable Oracle Linux repo: The loop variable
'item' is already in use. You should set the `loop_var` value in the
`loop_control` option for the task to something else to avoid variable
collisions and unexpected behavior.
This could bites us in nasty ways, so fix it.
11 months ago
ce2642f27b
feat: Adding a check which determines if cgroups are enabled on a node ( #11163 ) ( #11165 )
11 months ago
5dc12b2a15
Bump openstack-cloud-controller-manager from 1.25.3 to 1.28.2 ( #11174 )
Registry change to registry.k8s.io
Signed-off-by: tico88612 <17496418+tico88612@users.noreply.github.com>
11 months ago
8c12dedf05
Fix amazon linux bootstrap ( #11139 )
c58497cde#10983 ), 2024-03-27) refactored the
boostrap-os include but didn't adapt the amazon linux tasks to the
actual ID of amazon linux ('amzn')
Re-enable the CI so we can avoid that kind of breakage.
11 months ago
0b0faf8f72
Update external huawei cloud controller to 0.26.8 ( #11172 )
* Update external huawei cloud controller to 0.26.8
* Update huawei cloud controller templates
* Add security-group-id to config
* git fail
11 months ago
a09c73a356
Update kube-vip manifests to v0.8.0
11 months ago
966a8b95de
[metallb] Add variable for the metallb namespace ( #11136 )
11 months ago
a01d0c047a
fix: 🐛 patch calico node to avoid vxlan tunnel drop ( #11097 )
if node.projectcalico.org already existe patch node to set asNumber
instead of apply resource to prevent remove of existing fields feed by
calico-node pods
✅ Closes: 11096
11 months ago
4cb688d5e4
Fix CentOS typo ( #11161 )
The name reported in ansible_distribution is "CentOS", so this could
break some things.
11 months ago
5ce530c909
Merge stops and removes systemd services tasks in reset playbook ( #10902 )
11 months ago
9f62f60814
[kubernetes] Add hashes for kubernetes 1.29.4, 1.28.9, 1.27.13 ( #11108 )
11 months ago
537891a380
Update kube-vip manifests to v0.8.0
11 months ago
e57e958a39
Update kube-vip to v0.8.0
11 months ago
91dea023ae
[containerd] add hashes for versions '1.6.30-31', 'v1.7.16' and make v1.7.16 default ( #11142 )
11 months ago
245454855d
Add additional checking for calico rr cluster_id ( #11112 )
Signed-off-by: tu1h <lihai.tu@daocloud.io>
11 months ago
3a112e834c
ingress-nginx: added ability to enable opentelemetry nginx module ( #11034 )
11 months ago
f0e20705aa
Add Calico v3.27.3 and make it default ( #11141 )
* Add Calico v3.27.3 and make it default
* Add Calico v3.27.3 and make it default
* Update README.md
11 months ago
a7f98116ca
fix: updating the calico-crds ( #11089 )
11 months ago
088b1b0cec
Add `enabled` to pkgs to handle ipvs
Some packages requirements depends on inventory variables
(`kube_proxy_mode` in that case but it could apply to others).
As the case seems pretty rare, instead of adding complexity to pkgs, we
add an escape hatch to use jinja conditions.
That should be revisited if we find ourselves shoehorning lots of logic
in this later on.
11 months ago
11f35e462c
Convert common packages to use the new tooling
The empty dict means that packages will always be installed on the host.
1 year ago
da3ff1cc11
Convert OS specific packages to new format
Uses the logic introduced in the previous patch to convert all
kubernetes/preinstall/vars/* os specific files to the `pkgs`
dictionary.
Some niceties for devs:
- always validate the `pkgs` variable to catch mistakes in CI.
- ensure that `pkgs` is always sorted. This makes it easier to find the
packages you're looking for.
1 year ago
663fcd104c
Filter packages installation by OS and by group
Adds infrastructure to install OS packages depending not only on OS
(family, versions, etc) but on groups.
All the informations related to a particular package should reside in
the `pkgs` dictionnary, which takes inspiration from the `downloads`
dictionary structure.
1 year ago
a2019c1c24
Add a JSON schema describing the packages install structure
Since the structure we're setting in place for installing packages has
some complexity, add a JSON schema to avoid frustrating errors when
modifying the informations (adding/removing packages install).
11 months ago
3a43ac4506
Don't special case openssl for tumbleweed
openssl 1.1.1 is EOL since 12 September 2023, so just use the default
version on tumbleweed like we do on other distributions.
1 year ago
f91e00a61b
preinstall: Move ipvs packages into defaults
1 year ago
c6bdc38776
containerd: allow to configure fallback server ( #10988 )
Also nerdctl limitation is now removed as we use /etc/containerd/certs.d/
11 months ago
08a7010e80
Revert "Only download kubeadm images where needed ( #10899 )" ( #11105 )
This reverts commit 4b0a134bc9
11 months ago
538deff9ea
ntp: add config to filter and set ntp interfaces ( #11066 )
* ntp: add config to set which interface ntp should listen
* Fixed config to only have one variable
11 months ago
23b56e3f89
Enclose the cpu type with quotation marks in kubelet-config.v1beta1 ( #11111 )
Signed-off-by: tu1h <lihai.tu@daocloud.io>
11 months ago
eee5b5890d
feat: Add support for cilium 1.15 and updated cilium to v1.15.4 ( #11106 )
11 months ago
ab0ef182fb
[containerd/tracing]: add distributed tracing config flags ( #11103 )
* [containerd/tracing]: add distributed tracing config flags
Signed-off-by: Ugur Ozturk <ugurozturk918@gmail.com>
* [containerd/tracing]: add distributed tracing config flags -fix
Signed-off-by: Ugur Ozturk <ugurozturk918@gmail.com>
---------
Signed-off-by: Ugur Ozturk <ugurozturk918@gmail.com>
11 months ago
4db3e2c3cf
fix: 🐛 calico-cni-plugin missing RBAC ( #11077 )
To configure node asNumber for per node peering service account
calico-cni-plugin need nodes/status update rights
✅ Closes: 11076
11 months ago
3d19e744f0
feat(calico): add support filters on bgppeers per node definition ( #11079 )
Signed-off-by: MatthieuFin <matthieu2717@gmail.com>
11 months ago
929c818b63
Fixed joined_control_planes when ansible_hostvars references a variable ( #11060 )
1 year ago
4baa2c8704
set default containerd_version to v1.7.15 and add checksums ( #11083 )
* set default containerd_version to v1.7.15 and add checksums for v1.7.14 and v1.7.15
* update containerd version in README.md
1 year ago
f3065cc5c4
bump skopeo version and checksum ( #11044 )
Signed-off-by: Abhishek Jain <jain.abhishek1991@gmail.com>
1 year ago
ed2059395c
Remove the archived debian apt repository ( #11088 )
Signed-off-by: Kay Yan <kay.yan@daocloud.io>
1 year ago
8919901ed5
fix python regex matching problem when finding docker packages ( #11075 )
1 year ago
cc0c3d73dc
fix reset/main.yml lsattr command error when kubelet has symbolic link ( #11074 )
Signed-off-by: KubeKyrie <shaolong.qin@daocloud.io>
1 year ago
dd0f42171f
fix kubespray-defaults: Check for boostrap-os FQCN ( #11073 )
1 year ago
1b870a1862
Update kubelet systemd service default allowed IP addresses for cluster hardening ( #11061 )
Signed-off-by: bmelbourne <barry.melbourne0@gmail.com>
1 year ago
8a423abd0f
Update Snapshot controller to v7.0.2 ( #11041 )
Upgrade Snapshot controller installed for all supported Kubernetes
versions to v7.0.2. Also update the manifests used to deploy the
Snapshot controller.
1 year ago
3ec2e497c6
Update kubelet-csr-approver to v1.1.0 ( #11070 )
Signed-off-by: bmelbourne <barry.melbourne0@gmail.com>
1 year ago
7844b8dbac
Promote nodelocaldns daemonset to system-node-critical ( #11056 )
As upstream
1 year ago
e87040d5ba
change debian8 network manage service from networking to systemd-networkd ( #11058 )
Signed-off-by: KubeKyrie <shaolong.qin@daocloud.io>
1 year ago
b2cce8d6dc
force update helm repo if exists on host ( #11043 )
1 year ago
3067e565c0
Fix calico host local ipam ( #11022 )
* Prevent upgrade-ipam for host-local IPAM
Otherwise, the init container upgrade-ipam would clear the state of the host-local plugin, potentially causing it to reassign IPs that are still in use.
* USE_POD_CIDR required for host-local
4efd1bfd91/charts/calico/templates/calico-node.yaml (L279)4efd1bfd91/charts/calico/templates/calico-typha.yaml (L133)
1 year ago
Kay Yan
Alexander
Ugur Can Ozturk
Max Gautier
Franz Nemeth
tico88612
Daniel Strufe
Jorge Isnardo Altamirano
Vladimir Shaikovskii
MatthieuFin
hayden
Mohamed Omar Zaian
Lihai Tu
Denis Khachyan
Patrick
RaSerge
Mathieu Parent
Pavan Gunda
Devesh Kumar
Lilian ARAGO
Abhishek Jain
kyrie
Barry M
J
Sergey
Robert Volkmann