8c15db53b2
Fix helm for Kubernetes 1.16.2 ( #5332 )
Since upgrading k8s beyond 1.16.0 version, helm init does
no longer work with helm < 2.16.0 due to
https://github.com/helm/helm/issues/6374
This PR closes issue #5331
5 years ago
0200138a5d
Pass `ingress_nginx_extra_args` when deploying the nginx-ingress addon ( #5321 )
5 years ago
14af98ebdc
Respect cri-tool supported version matrix ( #5241 )
| Kubernetes Version | cri-tools Version |
|--------------------|-------------------|
| 1.16.x | v1.16.0 |
| 1.15.X | v1.15.0 |
| 1.14.X | v1.14.0 |
| 1.13.X | v1.13.0 |
| 1.12.X | v1.12.0 |
| 1.11.X | v1.11.1 |
- Upgrade to cri-tools 1.16.1
- Add checksums for cri-tools 1.16.1
5 years ago
8a5434419b
fix useradd etcd ( #5281 )
5 years ago
8a406be48a
Fix indentation in cilium-ds.yml template ( #5305 )
5 years ago
076f254a67
Add cilium_tunnel_mode variable to the cilium config ( #5295 )
5 years ago
45d151a69d
containerd installation on Debian ( #5326 )
5 years ago
bd014c409b
Skip coredns image when evaluating kubeadm images ( #5327 )
It will be enabled correctly in downloads
Change-Id: Ief0b7aa2a8ee2ba6a6849820802f8542584b2c04
Related-story: PRODX-1171
5 years ago
1c25ed669c
Remove unnecessary and risky reload network for resolvconf propagation ( #5322 )
Change-Id: I54d706f7941b4b86c4c6cd45340295577155b884
5 years ago
a005d19f6f
Enable systemd-resolved DNS resolution mode ( #5318 )
Change-Id: If3e253a40782e03cde7fc4a91493517ae31fda17
5 years ago
471589f1f4
Scale down coredns created by kubeadm upgrade to 0 replicas ( #5308 )
Change-Id: I128b0f9c1acbb956d9a6c4e5510b45a36e296af7
5 years ago
b0ee1f6cc6
Deploy Cinder CSI driver to provision volumes over OpenStack ( #5184 )
* Deploy Cinder CSI driver to provision volumes over OpenStack
* Deploy Cinder CSI StorageClass
* Cinder CSI doc
5 years ago
186ec13579
Fix incorrect suggestion to enable old k8s apis ( #5292 )
Change-Id: If965cc6aa0daaca232dcf2ca0efd649aa097497f
5 years ago
2c4e6b65d7
Raise delay and retry for rotate tokens ( #5304 )
Change-Id: I87844b43b9a18064e7a99567ce57c1ca1ffcc4a8
5 years ago
94d4ce5a6f
Retry cleaning up calico-node container ( #5302 )
Change-Id: Iad27b107860213759c7ae51f0891d7e5e7c6d96b
5 years ago
81da231b1e
Set cluster DNS in kubeadm config for kubelet dynamic config ( #5293 )
Change-Id: I23116efefe8626d361d1904fc6fb8448f66cf3c5
5 years ago
a1fff30bd9
Generate TLS certs for calico typha ( #5258 )
* Generate TLS certs for calico typha
Change-Id: I3883f49c124c52d0fc5b900ca2b44e4e2ed0d707
* Add group vars note
Change-Id: I63550dfef616e884efdbd42010a90b2c04c5eb69
5 years ago
81d57fe658
set calico_datastore default value in role kubespray-default ( #5259 )
5 years ago
3118437e10
check on all cluster node - kubelet_max_pods <= (2 ** (32 - kube_network_node_prefix | int)) - 2 ( #5279 )
5 years ago
65e461a7c0
download container always been on download_delegate host ( #5177 )
* download container always been on download_delegate host
* fix also check pull required
5 years ago
c672681ce5
Revert Pull Request #5084 ( #5120 )
Kubespray Pull Request #5084 (https://github.com/kubernetes-sigs/kubespray/pull/5084 ) caused more problems than it solved due to limitations with the synchronize module. See comments on Kubespray Issues #5059 (https://github.com/kubernetes-sigs/kubespray/issues/5059 ) and #5116 (https://github.com/kubernetes-sigs/kubespray/issues/5116 ). Details from Ansible documentation: "Currently, synchronize is limited to elevating permissions via passwordless sudo. This is because rsync itself is connecting to the remote machine and rsync doesn’t give us a way to pass sudo credentials in. ... Currently there are only a few connection types which support synchronize (ssh, paramiko, local, and docker) because a sync strategy has been determined for those connection types. Note that the connection for these must not need a password as rsync itself is making the connection and rsync does not provide us a way to pass a password to the connection. ..." Thus, reverting Pull Request #5084 .
5 years ago
d332a254ee
install python3 instead of python2 for fedora >= 30 fixes 5056, fixes 4802 ( #5111 )
5 years ago
3debb8aab5
add KUBELET_VOLUME_PLUGIN to kubelet.env ( #5128 )
5 years ago
aada6e7e40
Add etcd_data_dir variable to the kubeadm config ( #5263 )
5 years ago
ac60786c6f
Add support for restart handlers for control plane on crio/containerd ( #5250 )
* Add support for restart handlers for control plane on crio/containerd
Change-Id: I8343cc4e9df7f55b732628ed01cc6e7ea5dcee85
* Update main.yml
5 years ago
db33dc6938
Add support for Kubernetes 1.16.2 ( #5272 )
* Add support for Kubernetes 1.16.1
* Defaults to 1.16.1
* add 1.16.2 checksums and set new version as default
* correct 1.16.2 checksums and add 1.15.5 checksums
5 years ago
9dfb25cafd
fix typo ( #5275 )
5 years ago
df8d2285b6
Update ingress-nginx to v0.26.1 ( #5268 )
5 years ago
af6456d1ea
Fix selector for calico-typha deployment ( #5253 )
Change-Id: I79f43379cbe1c495cb416f0572e65f695d5ec2b8
5 years ago
6f57f7dd2f
Update nginx image to latest ( #5270 )
5 years ago
bec23c8a41
Add k8s v1.15.4 hashes ( #5235 )
5 years ago
faaff8bd72
Add RotateCertificates to kubelet config if kubelet_rotate_certificates is set. ( #5152 )
Signed-off-by: Robin Elfrink <robin.elfrink@eu.equinix.com>
5 years ago
8031c6c1e7
Update template for dashboard to support v2.x ( #5187 )
Secrets and ConfigMap should be created before dashboard pod run.
5 years ago
9d8fc8caad
Fix getting nameserver and search for /etc/resolv.conf with comments ( #5197 )
5 years ago
a51b729817
add ignore_errors to the kube-proxy deletion task ( #5236 )
When using cluster.yml or scale.yml to add/scale nodes in the existing
k8s cluster, the `kubeadm init` wouldn't run. As a result, kube-proxy
wouldn't be created, and therefore the kube-proxy deletion task would
fail, e.g. in the case where kube-router is used and "kube_proxy_remove"
is set to true. As a workaround, add ignore_errors to the kube-proxy
deletion task.
5 years ago
19bc79b1a6
Update cert-manager to v0.11.0 ( #5269 )
5 years ago
932935ecc7
fix wrong path in include install_host.yml in etcd role ( #5256 )
5 years ago
e01118d36d
Fix issue in remove-node/post-remove task ( #5185 ) ( #5186 )
5 years ago
dea9304968
Enable openstack_cacert to be either file or base64 string ( #5243 )
5 years ago
2864e13ff9
Reset between kubeadm secondary control plane join attempts ( #5240 )
Change-Id: Ic9425bf90552d7e3d42b02409af9773d99376384
5 years ago
0ba336b04e
install helm client separately ( #5212 )
5 years ago
89f1223f64
Fix selector workaround for helm install ( #5237 )
Change-Id: I826337b59814674c3feb4cd6a4904d9d53e01652
5 years ago
8bc0710073
clean up document ( #5214 )
5 years ago
fb591bf232
Apply workaround for NetworkManager and calico ( #5230 )
Change-Id: I5cb2bdf1a57707c1b8da3e5ac0c80e5c353480a4
5 years ago
a43e0d3f95
Switch to Kubernetes v1.16.0 ( #5189 )
* Switch to Kubernetes v1.16.0
Change-Id: I5d6a9528b2d443750fc5e031aff15ad3ffead158
* Fix download localhost cached file path
Change-Id: I65e79b70e3d1b37265ebc60f41b460cf4b0a0d47
* fix kubeadm etcd for v1.16
Change-Id: I6888a00fd48b530a38b0b31c4095492476af42d2
* disable tf packet jobs
Change-Id: I075c4666547fdea4c50ec04864f38e2cfaa79154
* Disable contiv packet jobs. Fix kube-router
Change-Id: I3170e8789e60711d4cee8faf65f2094480b79b8d
* bump sonobuoy version
Change-Id: Ib946905629c7c53ed88f08fb2f41c454457a0097
5 years ago
99dbc6d780
clean-up doc,spelling mistakes ( #5206 )
5 years ago
75e4cc2fd9
Updated kubectl.sh ( #5156 )
The script is not usable unless you are in the '.vagrant/provisioners/ansible/inventory/artifacts' folder.
This update makes this usable from anywhere.
5 years ago
81cb302399
MetalLB: fail if kube_proxy_strict_arp is false ( #5180 )
When using IPVS, kube_proxy_strict_arp = true is required
https://github.com/danderson/metallb/issues/153#issuecomment-518651132
Add kube_proxy_strict_arp to inventory/sample
5 years ago
3bcdf46937
fix-up some spelling mistakes ( #5202 )
5 years ago
1cf6a99df4
generate kubeadm download image list with options useHyperKubeImage ( #5203 )
5 years ago
Bjoern Teipel
Julien Pervillé
Florent Monbillard
YichenWong
Quentin Gliech
Junho Suh
Dmitry Chusovitin
Matthew Mosesohn
Ali Sanhaji
Sergey
Michael Oglesby
yelhouti
Matthew Rapa
Hugo Blom
Maxime Guyot
Xiaodu
Robin Elfrink
andreyshestakov
Erwan Miran
Qingkun Li
BenoitBOULANGER
陈谭军
Richard Scott
Etienne Champetier