92abf26d29
Ensure taint configuration for secondary control-plane nodes ( #8363 )
3 years ago
59f62473c9
Update configuration of registries in cri-o ( #7852 )
* Update configuration of registries in cri-o
* Update docs to match new registry configuration
3 years ago
dda557ed23
Update config.toml.j2 ( #8340 )
* Update config.toml.j2
i think this commit code is not completed works
exam registry address : a.com:5000
insecure registry must be http://a.com:5000
but this code add insecure a.com:5000 (without http://)
If there is no http, containerd accesses with https even if insecure_skip_verify = true
solution is code edit
* Update config.toml.j2
* Update containerd.yml
* Update containerd.yml
* Update containerd.yml
* Update config.toml.j2
3 years ago
cb54eb40ce
Use a variable for standardizing kubectl invocation ( #8329 )
* Add kubectl variable
* Replace kubectl usage by kubectl variable in roles
* Remove redundant --kubeconfig on kubectl usage
* Replace unecessary shell usage with command
3 years ago
3eab1129b9
CI: Replace CentOS 8 with AlmaLinux 8 before CentOS 8 EOL end of 2021 ( #8297 )
3 years ago
24f1402a14
nerdctl insecure registry config ( #8339 )
* Update prep_download.yml
nerdctl insecure registry config
* Update prep_download.yml
* Update prep_download.yml
apply conversations advice
* Update prep_download.yml
* Update prep_download.yml
* Update prep_download.yml
* Update prep_download.yml
* Update prep_download.yml
* Update prep_download.yml
* Update main.yml
* Update main.yml
* Update prep_download.yml
* Update prep_download.yml
3 years ago
bf00550388
Upgrade Cilium to 1.11.0 ( #8354 )
* Remove kvstore args from Cilium DaemonSet
Co-authored-by: Emin Aktaş <eminaktas34@gmail.com>
Co-authored-by: Yasin Taha Erol <yasintahaerol@gmail.com>
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* Bump Cilium to 1.11.0
Co-authored-by: Emin Aktaş <eminaktas34@gmail.com>
Co-authored-by: Yasin Taha Erol <yasintahaerol@gmail.com>
Signed-off-by: necatican <necaticanyildirim@gmail.com>
Co-authored-by: Emin Aktaş <eminaktas34@gmail.com>
Co-authored-by: Yasin Taha Erol <yasintahaerol@gmail.com>
3 years ago
6136fa7c49
Update Kubernetes version to 1.23.1
3 years ago
8d2b4ed4a9
Move min k8s version to 1.21
3 years ago
4c4c83f0a1
crun update to 1.4 ( #8330 )
* [crun] update crun to 1.4
* [crun] drop pre-1.x versions
3 years ago
0e98814732
Configure PriorityClassName for MetalLB deployment ( #8362 )
3 years ago
92f25bf267
Simplify usage of pre-remove role ( #8334 )
- Use builtin task scheduling of ansible (same task on each host)
instead of manual looping on master
Benefits:
- One less play in remove-node.yml playbook
- Parralel node drain
- Drain parameters (timeout, grace period, retries,
allow_ungraceful_removal) can be adjusted separately for each node
with ansible variables
3 years ago
63a53c79d0
Fix - Search root filesystem device ( #8366 )
3 years ago
841c61aaa1
Revert "Fix external lb error ( #8299 )" ( #8360 )
This reverts commit 4f2e4524b8
3 years ago
157942a462
fix resolved config ( #8351 )
3 years ago
e88a27790c
fix spelling error ( #8342 )
3 years ago
ed3932b7d5
[cni-plugins] upgrade to stable 1.0.1 ( #8331 )
* [cni-plugins] upgrade to stable 1.0.1
* [flannel] use binary from dedicated project
3 years ago
2b5c185826
calico_pool_blocksize must be cast as well in assertion when defined ( #8321 )
* calico_pool_blocksize must be cast as string in assertion when defined
* Cast as int rather than string
3 years ago
c3c128352f
Remove registry-proxy ( #8327 )
3 years ago
02a89543d6
registry: add ingress support ( #8311 )
3 years ago
c1954ff918
Support deploying kubernetes 1.23 ( #8323 )
* Ensure entries for 1.23 are added for supported_versions vars
* cri-o: add support for kubernetes 1.23 but still use cri-o 1.22
* kubescheduler-config: diferentiate config versions based on kube_version
3 years ago
b49ae8c21d
Delete "kubeadm alpha certs" code ( #8322 )
"kubeadm alpha certs" command has been promoted to "kubeadm certs" command,
and "kubeadm alpha certs" has been deprecated since Kubernetes v1.20 as [1].
In addition, Kubespray supports Kubernetes v1.20+.
This delete the deprecated command for cleanup.
[1]: https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.20.md#deprecation
3 years ago
1a7b4435f3
Bump default version of kubernetes to 1.22.5
3 years ago
db0e458217
Kubernetes: add hashes for v1.23.1, v1.23.0, v1.22.5, v1.21.8 and v1.20.14
3 years ago
f01f7c54aa
Add support for CRI-O user namespaces ( #8268 )
* add support for cri-o user namespaces
* comply with yamllint rules
3 years ago
c59407f105
add support for Calico BGPPeer sourceAddress ( #8306 )
3 years ago
fdc5d7458f
Upgrade to nerdctl 0.15.0 and some fixes ( #8315 )
* nerdctl: move to 0.15.0
* nerdctl: reduce verbosity when pulling images
* download: use proxy environment when using nerdctl to download containers
3 years ago
6aafb9b2d4
fix bad indentation ( #8314 )
3 years ago
aa9ad1ed60
clean files for kube-ovn ( #8310 )
3 years ago
aa9b8453a0
registry: service add clusterIP, nodePort, loadBalancer support ( #8291 )
* registry: service add clusterIP, nodePort, loadBalancer support
* modify camelcase name to underscore
* Add registry service type compatibility check
3 years ago
4f2e4524b8
Fix external lb error ( #8299 )
3 years ago
4f27c763af
containerd insecure registry support ( #8298 )
3 years ago
0e969c0b72
vSphere-CSI: update to 2.4.0 ( #8295 )
3 years ago
b396801e28
Update Cinder CSI to v1.22 ( #8296 )
3 years ago
682c8a59c2
containerd: change default resolvconf_mode to host_resolvconf ( #8247 )
* containerd: change default resolvconf_mode to host_resolvconf
* Wait for kube-apiserver to come back after pod refresh
* Handle resolv.conf gracefully
* Retain currently configured DNS entries to ensure we don't break the resolvers
* Suse uses wickedd for network management so no dhcp hooks
* Molecule: increase ansible timeout
* CI: Increase ansible timeout to 120s for Packet jobs
3 years ago
5a25de37ef
Revert "remove no longer present etcd nodes from APIEndpoints list in kubeadm-config configmap ( #8244 )" ( #8287 )
This reverts commit dc767c14b9
3 years ago
4ef2cf4c28
Registry add TLS and authentication support ( #8229 )
* Add registry TLS support
* Add registry configmap and htpasswd auth
3 years ago
990ca38d21
Kata-Containers: add 2.3.0 ( #8276 )
* Kata-Containers: add checksums for 2.3.0
* Kata-Containers: version 2.3.0 requires kubernetes 1.22.0+
3 years ago
c7e430573f
Calico: upgrade 3.21.x to 3.21.2 ( #8275 )
3 years ago
a328b64464
runc: upgrade to v1.0.3 ( #8274 )
3 years ago
a16d427536
Set etcd-events listen port to 2383 ( #8232 )
3 years ago
c98a07825b
Use cgroupsv2 where available (fedora) ( #8237 )
* Containerd: use cgroupsv2 where available (fedora)
* Docker: use cgroupsv2 where available (fedora)
* cri-o: use cgroupsv2 where available (fedora)
3 years ago
a98ca6fcf3
Update loadbalancers versions ( #8272 )
* Update loadbalancers versions
* fix haproxy_config_dir mode
3 years ago
4550f8c50f
calico_flexvol ( #8273 )
3 years ago
9afca43807
change dns upstream condition for coredns ( #8263 )
upstream_dns_servers should change corefile config even resolvconf_mode=docker_dns
3 years ago
27ab364df5
Improve control plane scale flow ( #13 ) ( #7989 )
* Improve control plane scale flow (#13 )
* Added version 1.20.10 of K8s
* Setting first_kube_control_plane to a existing one
* Setting first_kube_control_plane to a existing one
* change first_kube_master for first_kube_control_plane
* Ansible-lint changes
3 years ago
615216f397
Fix if bind-address is not set to 0.0.0.0 ( #8262 )
* if bind-address is not set to 0.0.0.0
* Update docs and left comments
* fix yamllist check: remove space
3 years ago
46b1b7ab34
Fix k8scsi/csi-resizer repo ( #8270 )
If trying to pull k8scsi/csi-resizer image from gcr.io, we face the error
like:
$ docker pull gcr.io/k8scsi/csi-resizer:v1.0.0
Error response from daemon: Head https://gcr.io/v2/k8scsi/csi-resizer/
manifests/v1.0.0: unknown: Project 'project:k8scsi' not found or deleted.
$
We can pull the image from quay.io instead.
This fixes the issue.
3 years ago
30d9882851
Add nodelocaldns only if it is enabled ( #7731 )
3 years ago
dfdebda0b6
Calico: remove duplicate values for CALICO_DISABLE_FILE_LOGGING and FELIX_DEFAULTENDPOINTTOHOSTACTION ( #8269 )
3 years ago
Unai Arríen
Bart Sloeserwij
Choi Yongbeom
Max Gautier
Cristian Calin
Necatican Yıldırım
Florian Ruynat
Romain ALBON
Samuel Liu
jbpratt
emiran-orange
zhengtianbao
Kenichi Omichi
Calin Cristian Andrei
Nicolas MASSE
kakkotetsu
Antoine Gatineau
singeleaf
Marat Talipov
Steven Reitsma
toplordsaito
Alvaro Campesino
Hanna Bledai