fe60832a02
Remove kubelet_node_{custom_flags,config_extra_args}
There is no need to have an extra variables for this, just use different
values per host (using Ansible group_vars, for example)
1 year ago
1bc61c9f35
Simplify kubelet-config template
Remove system|kube_master_<resource>_reserved variables.
Those variables are unnecessary because users can simply use the
variables in group_vars if they which to differentiate control plane
nodes from other nodes.
Set conservative defaults for ephemeral-storage and pids for both kube
and system reserved resources.
1 year ago
872d717105
Add kube|system_reserved CI testing
2 months ago
1533d40411
Fix kube_reserved_cgroups_for_service_slice
The default value is used across kubespray but only defined in
kubernetes/node.
Move it to kubespray-defaults
2 months ago
4b324cb0f0
Rename master to control plane - non-breaking changes only ( #11394 )
K8s is moving away from the "master" terminology, so kubespray should follow the same naming conventions. See 65d886bb30/sig-architecture/naming/recommendations/001-master-control-plane.md
2 months ago
d4bf3b9dc7
cleaup for 2.26.0 ( #11511 )
2 months ago
f9ebd45c74
boostrap-os: use import_tasks instead of symlinks ( #11508 )
Working symlinks are dependant on git configuration (when using the playbook as
a git repository, which is common), precisely `git config
core.symlinks`.
While this is enabled by default, some company policies will disable it.
Instead, use import_tasks which should avoid that class of bugs.
2 months ago
7f527f6195
Drop support for RHEL 7 / CentOS 7 ( #11246 )
* Simplify docker systemd unit
systemd handles missing unit by ignoring the dependency so we don't need
to template them.
* Remove RHEL 7/CentOS 7 support
- remove ref in kubespray roles
- move CI from centos 7 to 8
- remove docs related to centos7
* Remove container-storage-setup
Only used for RHEL 7 and CentOS 7
2 months ago
3da6c4fc18
Allow for configuring etcd progress notify interval and default set to 5s ( #11499 )
2 months ago
e744a117d6
Remove systemd version + ostree check for docker TasksMax ( #11493 )
systemd ignores unknown keys (with a warning) so version checking is not
necessary.
There is no rationale for excluding it from ostree systems either.
2 months ago
03372d883a
upgrade nerdctl to v1.7.6 ( #11492 )
Signed-off-by: Jongwoo Han <jongwooo.han@gmail.com>
2 months ago
8a961a60c2
Feat: Gateway API CRDs install support ( #11376 )
* Feat: add Gateway API CRDs installation
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
* Feat: add Gateway API CRDs variable in inventory
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
---------
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
2 months ago
db0138b2f9
fix: incorrect member matching when removing etcd nodes ( #11488 )
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
2 months ago
b0be5f2dad
Print the name of faulty jinja templates in pre-commit ( #11484 )
2 months ago
27c7dc7008
upgrade helm to v3.15.4 ( #11486 )
2 months ago
acc5e579f6
Add conditional checking on ubuntu kernel unattended_upgrades disabling ( #11479 )
Signed-off-by: tu1h <lihai.tu@daocloud.io>
2 months ago
60b323b17f
[CI] Add a CI job to test cluster upgrading, and fix bug of testcases_run.sh ( #11458 )
* Fix: fix testcases_run.sh for upgrade tests
Need to git checkout ${CI_COMMIT_SHA} before running upgrade playbook (revert #11173 partially)
* feat: add CI job to test upgrade
Add a packet_ubuntu22-calico-all-in-one-upgrade job
2 months ago
924a979955
Calico v3.28.[0-1] checksums and change calico default version ( #11234 )
* make calico api server manifest backward compatible with version older than 3.27.3
Add 3.28.1 checksums
Add 3.28.0 checksums
Change default version to 3.27.3
* change default calico version to 3.28.1
* Set mount type to DirectoryOrCreate for hostPath needed by Calico
2 months ago
5fe8714f05
Adding myself (VannTen) as approver ( #11483 )
2 months ago
6acb44eeaf
update containerd 1.7.21 ( #11478 )
2 months ago
c89ea7e4c7
Fix: remove --config option from kubeadm upgrade ( #11350 ) ( #11352 )
We can't mix some options with --config for kubeadm upgrade.
The --config on upgrade is deprecated, and should be removed.
2 months ago
3d9e4951ce
fix static api server advertise address ( #11457 )
2 months ago
776b40a329
Adjust task name since we allow empty kube_node ( #11474 )
2 months ago
a3d0ba230d
Remove kubeadm_version and use kube_version instead ( #11473 )
We explicitly check for equality so customizing kubeadm_version does not
work at the moment.
Use only one variable instead.
2 months ago
9a7b021eb8
Do not use ‘yes/no’ for boolean values ( #11472 )
Consistent boolean values in ansible playbooks
2 months ago
5c5421e453
fix double pop of access_ip ( #11435 )
2 months ago
1798989f99
Bump molecule from 24.7.0 to 24.8.0 ( #11460 )
Bumps [molecule](https://github.com/ansible-community/molecule ) from 24.7.0 to 24.8.0.
- [Release notes](https://github.com/ansible-community/molecule/releases )
- [Commits](https://github.com/ansible-community/molecule/compare/v24.7.0...v24.8.0 )
---
updated-dependencies:
- dependency-name: molecule
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2 months ago
961a6a8c9e
fix reset network for tencent OS ( #11459 )
Signed-off-by: KubeKyrie <shaolong.qin@daocloud.io>
2 months ago
5b057c7328
Update list of admission plugins with a config file
2 months ago
d3402736d4
Remove special case for PodNodeSelector
This is already handled by the previous task.
2 months ago
47c3949477
Change plugins_needs_config list format
Makes easier diff when adding or removing plugins.
2 months ago
2f84567a69
Add containerd config options ( #11080 )
* chore(containerd): add some config debug options
See: https://github.com/containerd/containerd/blob/v1.7.15/docs/man/containerd-config.toml.5.md
* chore(containerd): add CRI config options
See: https://github.com/containerd/containerd/blob/v1.7.15/docs/man/containerd-config.toml.5.md
See: https://github.com/containerd/containerd/blob/v1.7.15/docs/cri/config.md
2 months ago
171b0e60aa
Bump tox from 4.17.1 to 4.18.0 ( #11461 )
Bumps [tox](https://github.com/tox-dev/tox ) from 4.17.1 to 4.18.0.
- [Release notes](https://github.com/tox-dev/tox/releases )
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst )
- [Commits](https://github.com/tox-dev/tox/compare/4.17.1...4.18.0 )
---
updated-dependencies:
- dependency-name: tox
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2 months ago
c4338687e1
[ingress-nginx] upgrade to 1.11.2 ( #11463 )
3 months ago
ad1ce92b41
Update node-feature-discovery to v0.16.4 ( #11250 )
3 months ago
1093c76f9b
bump k8s version ( #11455 )
3 months ago
c7935e2988
Add tico88612 as reviewer ( #11453 )
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
3 months ago
0306771c29
fix: cleanup networkmanager dns conf on reset ( #11440 )
3 months ago
390d74706c
[kube-ovn] update version to 1.12.21 ( #11445 )
Signed-off-by: Mengxin Liu <liumengxinfly@gmail.com>
3 months ago
ce9ba9a8bf
Bump tox from 4.16.0 to 4.17.1 ( #11442 )
Bumps [tox](https://github.com/tox-dev/tox ) from 4.16.0 to 4.17.1.
- [Release notes](https://github.com/tox-dev/tox/releases )
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst )
- [Commits](https://github.com/tox-dev/tox/compare/4.16.0...4.17.1 )
---
updated-dependencies:
- dependency-name: tox
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
3 months ago
fe4cbbccd1
fix: correct resolvconf typo ( #11439 )
3 months ago
e43e08c7d1
fix: use super-admin.conf for kube-vip on first master when it exists ( #11422 )
* fix: use super-admin.conf for kube-vip when it exists
* Mathieu Parent add as co-author
Co-authored-by: Mathieu Parent <math.parent@gmail.com>
* template change for readability
* fix lint error
---------
Co-authored-by: Mathieu Parent <math.parent@gmail.com>
3 months ago
28712045a5
bump cni version to v1.4.0 ( #10698 )
3 months ago
1968db9a52
fix: skip multus when not defined ( #10934 )
fix task failure:
TASK [kubernetes-apps/network_plugin/multus : Multus | Start resources] ************************************************
fatal: [hfal12k8n1 -> {{ groups['kube_control_plane'][0] }}]: FAILED! => {"msg": "Error in jmespath.search in json_query filter plugin:\n'ansible.vars.hostvars.HostVarsVars object' has no attribute 'multus_manifest_2'"}
3 months ago
cc03ca62be
Avoid empty "supersede domain-name-servers" directives for dhclient.conf ( #10948 )
Fixes https://github.com/kubernetes-sigs/kubespray/issues/10947
This patch aims to be minimal and intentionally:
- does not change the generation logic for `supersede_domain` and `supersede_search`
- does not change how `nameserverentries` (for NetworkManager) is built
It seems like `nameserverentries` in the "Generate nameservers for resolvconf, including cluster DNS"
task is built the same way as `dhclient_supersede_nameserver_entries_list`.
However, `nameserverentries` in the "Generate nameservers for resolvconf, not including cluster DNS"
task (below) is built differently for some reason. It includes `configured_nameservers` as well.
Due to these differences, I have refrained from reusing the same building logic
(`dhclient_supersede_nameserver_entries_list`) for both.
If the `configured_nameservers` addition can be removed or made to apply
to dhclient as well, we could potentially build a single list and then
generate the `nameserverentries` and `supersede_nameserver` strings from it.
3 months ago
5f18fe739e
Restart kube-proxy pods only on configmap changes ( #11401 )
3 months ago
343d680371
fix kylin OS choose NetworkManager ( #11406 )
Signed-off-by: KubeKyrie <shaolong.qin@daocloud.io>
3 months ago
3d1653f950
[containerd] add hashes for versions '1.6.32-34', 'v1.7.17-20' and make v1.7.20 default ( #11413 )
3 months ago
dd51ef6f96
Bugfix/code inspection. ( #11384 )
- Make ansible-galaxy collection dependencies explicit
- Reorganized requirements.yml
- Adding required collections to galaxy.yml
- Ansible 9.6.0 was yanked on Pypi
- Sync pre-commit requirements with requirements.txt
Signed-off-by: Bas Meijer <bas.meijer@enexis.nl>
3 months ago
4e99b94dcc
Add generic post upgrade hooks for node ( #11368 )
3 months ago
Max Gautier
Bogdan Sass
Kay Yan
刘旭
Jongwoo Han
ChengHao Yang
ERIK
Lihai Tu
Takuya Murakami
Ehsan Golpayegani
Takuya Murakami
Selçuk Arıbalı
Vlad Korolev
R. P. Taylor
dependabot[bot]
kyrie
Lola Delannoy
Mohamed Omar Zaian
kokyhm
Ho Kim
Mengxin Liu
Cyclinder
Not Darko
Slavi Pantaleev
Injun Baeg
Bas
James