3ccba08983
Fix crio_packages for Rocky8 ( #8594 )
3 years ago
632aa764e6
etcd: add etcd v3.5.1 for kubernetes 1.22+ ( #8588 )
* There is an issue with etcd v3.5.0 where it resurrects ancient members see: https://github.com/etcd-io/etcd/issues/13196
This issue is clearly fixed in etcd v3.5.2
* Just keep the checksums
3 years ago
f6342b6cf4
[crun] upgrade to 1.4.3 ( #8598 )
3 years ago
471585dcd5
[containerd]: upgrade versions to fix CVE-2022-23648 ( #8597 )
* [containerd] add hashes for 1.6.1
* [contained] make 1.6.1 the default
* [containerd] add hashes for 1.5.10
* [containerd] add hashes for 1.4.13
* [nerdct] bump to 0.17.1
3 years ago
51821a811f
MetalLB: update to v0.12.1 ( #8593 )
Signed-off-by: Maciej Wereski <m.wereski@partner.samsung.com>
3 years ago
299a9ae7ba
terraform/gcp: Add ingress_whitelist ( #8590 )
Also, do not create unneeded resources (target pools are charged and should
only be created when needed).
3 years ago
bf7a506f79
[containerd] Upgrade containerd to 1.6.0 and re-enable arm64 architecture with default options ( #8555 )
* [containerd] add checksums for 1.6.0
* [containerd] promote 1.6.0 as the new default
* [runc] promote 1.1.0 as the new default to allow arm deployments out of the box
* [nerdctl] bump to 0.17.0 to align with containerd 1.6.0
* [reset] allow crictl stopp and rmp commands to fail
3 years ago
2e925f82ef
Revert "Fix: typos in docs and comments ( #7805 )" ( #8592 )
This reverts commit 417180246c
3 years ago
ddef7e1139
missing "check_mode: no"s for several read-only tasks ( #8584 )
this is not complete -- there are almost certainly more instances of
this issue
3 years ago
672e47a7eb
feat: check & uninstall container engine ( #8439 )
Signed-off-by: Cyril Corbon <corboncyril@gmail.com>
3 years ago
3e8e64a3e5
fix typo / error regarding etcd and k8s_cluster groups ( #8580 )
As far as I can tell this is simply a typo that has existed from the beginning. Having it this way around (`etcd` group as a child and thus subset of `k8s_cluster`) mirrors what is written in the preceeding sentence.
3 years ago
b554246502
Fix host DNS config 1) being edited too soon and 2) not working with NM ( #8575 )
Signed-off-by: Mac Chaffee <me@macchaffee.com>
3 years ago
6d683c98a3
[Terraform-AWS] Replace CLB with NLB ( #8578 )
3 years ago
ee079f4740
fix(coredns): make sure to keep coredns repository namespace ( #8572 )
fix: regex
fix: wrong regex_replace usage
3 years ago
a090038d02
[CI] add ara to collect CI job logs ( #8545 )
3 years ago
4f1499bd23
Fixup remaining etcd_kubeadm_enabled variables ( #8576 )
3 years ago
36393d77d3
Encrypting Secret Data at Rest ( #8574 )
* change default value for Encrypting Secret Data at Rest to secretbox, remove experimental flag and add documentation
* fix MD012/no-multiple-blanks
3 years ago
e053ee4272
Check all places with `check_mode: no` for side effects ( #8573 )
and fix the one with side effect.
Also removes `notify` from this task as the task has `changed_when: false`
and notify is not going to fire.
3 years ago
1d46c07307
Cleanup crictl configuration file ( #8569 )
3 years ago
f9b5e448c1
Prevent removing etcd member when running in check mode ( #8570 )
3 years ago
3effb008c9
improve validation conditions for MetalLB BGP Peers ( #8568 )
3 years ago
a088f492f4
chore: remove addon-resizer ( #8566 )
Signed-off-by: Cyril Corbon <corboncyril@gmail.com>
3 years ago
e9c8913248
Add kubeadm option to etcd_deployment_type to replace the etcd_kubeadm_enabled variable ( #8317 )
* Add kubeadm option to etcd_deployment_type to replace the etcd_kubeadm_enabled variable
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* Add etcd kubeadm deployment documentation
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* Refactor warning for the deprecated 'etcd_kubeadm_enabled' variable
Signed-off-by: necatican <necaticanyildirim@gmail.com>
3 years ago
b9a27c91da
Update kubernetes dashboard to 2.5.0
3 years ago
d4f654275b
Set default kubernetes version to 1.23.4
3 years ago
f6eb4c749d
Add kubernetes hashes for 1.23.4/1.22.7/1.21.10
3 years ago
418fc00718
fix: kube-dns service deletion ( #8565 )
Signed-off-by: Cyril Corbon <corboncyril@gmail.com>
3 years ago
2537177929
Fix amazon docker version ( #8564 )
3 years ago
9af719bf99
This fixes the etcd node removal. ( #8526 )
Since we are already on an etcd node while executing the commands, there
is no need to find out an etcd IP because it is on localhost.
3 years ago
9e020b252e
Configure Etcd container_manager explicitly ( #8521 )
* Configure Etcd container_manager explicitly
* Add explanation for the Etcd container_manager variable
* Remove redundant space in etcd vars
3 years ago
cc45e365ae
Fix print_hostnames of inventory.py ( #8554 )
When trying to run print_hostnames of inventory.py, it outputs the following
error:
$ CONFIG_FILE=./test-hosts.yaml python3 ./inventory.py print_hostnames
Traceback (most recent call last):
File "./inventory.py", line 472, in <module>
sys.exit(main())
File "./inventory.py", line 467, in main
KubesprayInventory(argv, CONFIG_FILE)
File "./inventory.py", line 92, in __init__
self.parse_command(changed_hosts[0], changed_hosts[1:])
File "./inventory.py", line 415, in parse_command
self.print_hostnames()
File "./inventory.py", line 455, in print_hostnames
print(' '.join(self.yaml_config['all']['hosts'].keys()))
KeyError: 'all'
because it is missed to load a hosts config file before printing hostnames.
This fixes the issue.
3 years ago
97c667f67c
Fix etcd_events not getting upgraded in upgrade-cluster.yml ( #8550 )
Signed-off-by: Mac Chaffee <me@macchaffee.com>
3 years ago
063fc525b1
nerdctl: upgrade to 0.16.1 ( #8539 )
3 years ago
0f73d87509
Allow pausing after upgrade but before uncordon ( #8530 )
* Allow pausing after upgrade but before uncordon
* Expand docs for upgrade pausing vars
Signed-off-by: Mac Chaffee <me@macchaffee.com>
3 years ago
402e85ad6e
[calico] upgrade release checksums ( #8544 )
* [calico] upgrade 3.19.x to 3.19.4
* [calico] upgrade 3.20.x to 3.20.4
* [calico] upgrade 3.21.x to 3.21.4 and make it the default
* [calico] add 3.22.0 checksums
* [calico] account for path changes in calico 3.21.4 crd archive and above
3 years ago
1d635e04e4
Allow to specify a source address for metallb peerings, and target only some nodes using node selectors ( #8534 )
3 years ago
98d5d0cdd5
add support for Dual Stack node InternalIP ( #8542 )
3 years ago
31d4a38f09
terraform/gcp: Allow to change extra disk types ( #8524 )
3 years ago
1ebe456f2d
add support for Calico IP6_AUTODETECTION_METHOD ( #8541 )
3 years ago
c6e5314fab
implement download mirrors support ( #8474 )
* [download] add mechanism to support mirrors
* [calico] support alternate download url
3 years ago
a6a79883b7
Fix: Error when creating subnets more than AZ ( #8516 )
3 years ago
b02e68222f
feat(offline): Improve generate_list.sh to generate offline file list using ansible ( #8537 ) ( #8538 )
Use jinja2 template and ansible to expand variables.
3 years ago
da8522af64
docs: Update offline-environment.md for containerd ( #8520 ) ( #8523 )
* Add containerd/runc/nerdctl download url
* Add insecure registries configuration for containerd
3 years ago
84b93090a8
Change Cilium setting identity_allocation_mode to cilium_identity_allocation_mode ( #8519 )
* Change Cilium identity_allocation_mode to cilium_identity_allocation_mode
* Change inventory sample
3 years ago
5695c892d0
Fix wrong port name in metallb.yml.j2 ( #8510 )
3 years ago
696101a910
Fixed mitogen.yml ( #8508 )
Fixed the problem when call ansible-playbook contrib/mitogen/mitogen.yml
"The error was: 'dict object' has no attribute 'section'"
What type of PR is this?
/kind bug
What this PR does / why we need it:
Which issue(s) this PR fixes:
Fixes #
Special notes for your reviewer:
Does this PR introduce a user-facing change?:
3 years ago
54dfe73d24
Add bastion support to remove-node.yml ( #8504 )
Somehow bastion support for remove-node.yml was missing.
This commit adds it.
3 years ago
87928baa31
CRI-O: fix unqualified-search registries ( #8496 )
3 years ago
6a4fd33a03
Added ppc64le support ( #8505 )
* Added ppc64le support
* Fixed linting errors
3 years ago
790448f48b
feat: update cert-manager to 1.7.0 ( #8491 )
Signed-off-by: Cyril Corbon <corboncyril@gmail.com>
3 years ago
Branko Mijuskovic
Mohamed Zaian
Cristian Calin
Maciej Wereski
Mathieu Parent
Tom Janson
cyril-corbon
Mac Chaffee
SOPHAL HONG
Nicolas Goudry
Florian Ruynat
Alex
Ilya Margolin
jayonlau
kakkotetsu
Necatican Yıldırım
Sander Klein
Vitaliy D
Kenichi Omichi
Tony Fouchard
SOPHAL HONG
Takuya Murakami
Tom Stian Berget
Byeonggon Lee
DenisKa
Krystian Młynek
mgiessing