a7a204ebca
Add kube_encryption_resources variable to configure which resources are encrypted at rest ( #5797 )
4 years ago
8774d7e4d5
Fix ERROR! the playbook: tests/testcases/020_check-nodes-ready.yml could not be found ( #5798 )
4 years ago
34e51ac1cb
Add a test to check that nodes are Ready ( #5793 )
4 years ago
d152dc2e6a
Update prep_download.yml ( #5791 )
Fix check if user can use docker without sudo.
4 years ago
8ce5a9dd19
remove atomic support because reached end of live ( #5783 )
4 years ago
820d8e6ce6
Adding new registry_port option ( #5779 )
New override are added to allow installation of the registry
on different ports than ``5000``. The default port is unchanged
from previous versions
4 years ago
3cefd60c37
Add OWNERS file for kube-router ( #5782 )
I propose also my help as a reviewer
4 years ago
876d4de6be
Fedora CoreOS support ( #5657 )
* fedora coreos support
- bootstrap and new fact for
* fedora coreos support
- fix bootstrap condition
* fedora coreos support
- allow customize packages for fedora coreos bootstrap
* fedora coreos support
- prevent install ptyhon3 and epel via dnf for fedora coreos
* fedora coreos support
- handle all ostree like os in same way
* fedora coreos support
- handle all ostree like os in same way for crio
* fedora coreos support
- add fcos documentations
4 years ago
974902af31
Update Kube-router version to v0.4.0 ( #5756 )
4 years ago
45626a05dc
fix pip requirements version ( #5174 )
Because using python Program create inventory it will happen error, thus I change python pip version to install kubespray requirements.
4 years ago
4b5299bb7a
Add variables to configure Containerd default runtime, untrusted runt… ( #5497 )
* Add variables to configure Containerd default runtime, untrusted runtime and additional runtimes
* Add containerd settings to sample inventory
* Empty commit
4 years ago
ceab27c97a
Add OWNERS file for recover_control_plane ( #5505 )
Related to #5432
4 years ago
03d1b56a8f
fix check exists download cache ( #5776 )
4 years ago
64190dfc73
Fix deploy heketi show selector missing error. ( #5738 )
4 years ago
29128eb316
Add AWS ALB Ingress Controller ( #5489 )
* Add AWS ALB Ingress Controller Ansible role
* remove trailing spaces
* update owners
* ALB ingress: update rbac clusterrole and remove role
* Move alb-ingress role to roles/kubernetes-apps/ingress_controller folder
4 years ago
ea9f8b4258
Add document about adding/replacing a node ( #5570 )
* Add document about adding/replacing a node
* Update nodes.md
Amend for comments
4 years ago
1cb03a184b
kubernetes 1.15.11 ( #5775 )
4 years ago
158d998ec4
Support configuring the Calico iptables insert mode ( #5473 )
* Support configuring the insert mode
Defaults to the upstream default https://docs.projectcalico.org/v3.9/reference/felix/configuration
so nothing should change for existing deployments.
This allows coexistence with other firewall management technologies.
* Add a note to the sample config
4 years ago
168241df4f
Python bootstrap: upgrade pypy to 3.6-7.2.0. ( #5511 )
Solves problem with mitogen about 'Compress object has no attribute copy' in zlib module.
4 years ago
f5417032bf
Merge OracleLinux in RedHat bootstrap-os ( #5575 )
* Merge OracleLinux in RedHat bootstrap-os
* Set default for use_oracle_public_repo in main.yaml
4 years ago
d69db3469e
Add external zones in nodelocaldns configuration ( #5591 )
Allows to configure additionnal zone for domains not resolved by `upstream_dns_servers`.
4 years ago
980a4fa401
Add docker-ce 19.03 packages for Debian & Ubuntu ( #5729 )
* Add docker-ce 19.03 packages for Debian & Ubuntu
K8s has updated the recommended Docker version to 19.03. More
specifically it should be 19.03.4, but since we used 18.06.7 instead of
.2, I'm assuming the latest patch version should be used here as well.
* Add docker 19.03 for redhat
4 years ago
027e2e8a11
Update CoreDNS to 1.6.7 ( #5761 )
4 years ago
dcfda9d9d2
Change python crypto module from pycrypto to cryptography ( #5769 )
4 years ago
ca73e29ec5
Use k8s.gcr.io for kubernetes related images ( #5764 )
* Use k8s.gcr.io for kubernetes related images
* Use k8s.gcr.io in inventory sample
4 years ago
0330442c63
Kubernetes 1.16.8 ( #5770 )
* Kubernetes 1.16.8
* Use 1.16.8 in sample inventory and kubespray-defaults
4 years ago
221c6a8eef
Use a separate runner for light CI jobs ( #5771 )
4 years ago
25a1e5f952
Include etcd image repository when using kubeadm etcd deployment mode ( #5725 )
4 years ago
38df80046e
CI inventory should start at 1 instead of 0 ( #5763 )
4 years ago
57bb7aa5f6
Fix delete nodes task ( #5747 )
4 years ago
86996704ce
remove unused crictl hashes ( #5754 )
4 years ago
f53ac2a5a0
Update metrics addon for 1.16 ( #5706 )
* upgrade metrics server and resizer images version
* scope "apps" api group for addon resizer
4 years ago
d0af5979c8
install csi-driver not just cinder ( #5766 )
4 years ago
43020bd064
Fix the command for kube-proxy cleanup ( #5671 )
4 years ago
dc00b96f47
Add missing Coreos OS family string ( #5759 )
4 years ago
71c856878c
update multus to 3.4 and add crio support ( #5701 )
Signed-off-by: Chris Randles <randles.chris@gmail.com>
4 years ago
19865e81db
Add OWNERS file for OpenStack CSI driver and cloud controller ( #5753 )
4 years ago
a4258b1244
Add automatic cleanup of OpenStack CI VMs ( #5760 )
4 years ago
e0b76b185a
Failover for adding proxy when line exists in file ( #5751 )
The 'regexp' parameter matches last occurrence of a line starting with 'proxy=' and replaces it with the one defined in 'line' parameter. If no match - it works same way as before. This fixes resuming cluster deployments failed after that task (if there was no more than one line starting with 'proxy' in the yum.conf file - this condition should also be reassured with the change introduced here) eg. if they were initiated with Terraform.
4 years ago
c47f441b13
fix kube-proxy server address when local apiserver lb is disabled ( #5730 )
refs #5277
As the issue describes, when no external or local load-balanced is used,
kube-proxy won't be able to contact apiserver at 127.0.0.1. So the
config map should be left as is.
4 years ago
7c854a18bb
Enable retries on SSH error during CI ( #5755 )
4 years ago
8df2c0a7c6
Upgrade CNI plugins to 0.8.5 ( #5717 )
4 years ago
e60b9f796e
add calico VXLAN mode, update docs and vars in sample inventory ( #5731 )
* calico VXLAN mode
* check vars if calico backend defined
4 years ago
2c8bcc6722
Upgrade etcd to 3.3.12 ( #5718 )
* Upgrade etcd to 3.3.18
* Try with etcd 3.3.15 (kubeadm 1.16.7 default)
* Back to square one
* Try with 3.3.11
* Upgrade etcd to 3.3.18 (take 2)
* Try with 3.3.12
4 years ago
e257d92f41
Cilium updates ( #5438 )
* Add resources needed to deploy 1.6.4
* Use cilium v1.6.4
* Change deprecated option name
* Add update crd to clusterrole cilium
* Cilium 1.6.4 -> 1.6.5
* Make monitor-aggregation config configurable as a variable
* Change monitor-aggregation default none->medium
* Cilium 1.6.5 -> 1.6.6
* Update to 1.7.0
* v1.7.0->v1.7.1
4 years ago
f697338eec
[Openstack] Install Cinder-CSI before first node is schedulable again ( #5735 )
* install cinder-csi before upgrading nodes
* Only run the Cinder CSI when enabled
4 years ago
e2ec7c76a4
containerd: bump to 1.2.13 ( #5727 )
https://github.com/containerd/containerd/releases/tag/v1.2.11
CVE-2019-16884 / CVE-2019-17596
https://github.com/containerd/containerd/releases/tag/v1.2.12
CVE-2019-19921 / CVE-2019-16884 / CVE-2019-11253
https://github.com/containerd/containerd/releases/tag/v1.2.13
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
4 years ago
058d101bf9
Escape dots in jsonpath keys. ( #5600 )
+ use more secure `command` instead of `shell`
+ read-only command doesn't change state - make idempotent
+ multi-line long string
4 years ago
833794feef
[Openstack] Cleanup the old in-tree openstack cloud provider ( #5742 )
* Added playbook to migrate openstack cloud provider
* remove old cloud provider config
* Rewrite provisioned-by annotation on Cinder PVs
* update indents
Co-authored-by: Jonathan Süssemilch Poulain <jonathan@sofiero.net>
4 years ago
a3dedb68d1
[Openstack] Make it possible to apply the new cloud provider during upgrade ( #5707 )
* run external cloud provider setup during upgrade
* change name of taskt to better reflect what it does
* fix typo
4 years ago
Maxime Guyot
nmr
spaced
Bjoern Teipel
bozzo
MengZeLee
Pasquale Toscano
Yujun Zhang
Sergey
keyboardfann
Michael Shnit
hfinucane
Cédric de Saint Martin
Sander Cornelissen
Xiaodu
Florent Monbillard
Nakahara, Kohei
Florian Ruynat
Joel Seguillon
Hugo Blom
Qingkun Li
Danilo Riecken P. de Morais
Christopher Randles
dymq
Fredrik Lönnegren
Etienne Champetier
Lovro Seder