Samuel Liu
a28b58dbd0
[calico]use ipamconfig instead of calico ipam command ( #8839 )
* use ipamconfig instead of calico ipam command
* fix ansible lint
2 years ago
orange-llajeanne
a26a9ee14f
set apparmor_enabled in netchecker task ( #8844 )
2 years ago
Kenichi Omichi
c09fcd4f92
Skip gathering facts when reset_nodes is false ( #8843 )
The doc[1] explains we need to specify
"-e reset_nodes=false -e allow_ungraceful_removal=true"
to delete offline node. However the task "Gather facts"
tried to gather facts of offline node also and the task
was failed.
This adds a condition to skip gathering facts when reset_nodes
is false on remove-node.yml.
[1]: https://github.com/kubernetes-sigs/kubespray/blob/master/docs/nodes.md#3-remove-an-old-node-with-remove-nodeyml
2 years ago
Samuel Liu
593359ec77
fix kube-ovn image ( #8838 )
2 years ago
Maxime Guyot
34ec4d5d40
Move woopstar to emeritus approver ( #8809 )
2 years ago
Kay Yan
3d8f3bc0b7
Fix the invalid kube vip manifest ( #8831 )
* add Feature synchronized time checking
* fix-invalid-kube-vip-manifest
2 years ago
Samuel Liu
eea7bb7692
only need run this once ( #8833 )
calicoctl ipam xx
calicoctl apply xx
2 years ago
Cristian Calin
3a89e31dee
[ansible] update ansible and cryptography requirements to work on ubuntu 22.04 ( #8826 )
2 years ago
Cristian Calin
0c504e4984
[docs] document support for ansible versions ( #8827 )
drop note about not supporting ansible 2.9 since we still cover it in
nightly CI
2 years ago
Kenichi Omichi
0bf070c33b
doc: write how to use kata-container for pods ( #8817 )
kata-container is not used by default even if enabling kata_containers_enabled.
This updates the doc for writing how to do that.
2 years ago
Cyclinder
dc8ad78206
fix: incorrect condition type ( #8822 )
Signed-off-by: cyclinder qifeng.guo@daocloud.io
2 years ago
ERIK
48e938660d
Allow replacement of address prefixes for all images ( #8764 )
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
2 years ago
Mohamed Zaian
632d457f78
[ingress-nginx] upgrade to 1.2.0 ( #8814 )
2 years ago
Calin Cristian Andrei
569a319ff5
[calico] don't clobber user set bgp configuration options that are not managed by kubespray
2 years ago
Calin Cristian Andrei
47812ec002
[calico] don't clobber user set ippool options that are not managed by kubespray
2 years ago
Calin Cristian Andrei
c27dee57ea
[calico] don't clobber user set felixconfig options that are not managed by kubespray
2 years ago
weizhoublue
b289f533b3
get wrong server name of coredns ( #8811 )
Signed-off-by: weizhou.lan@daocloud.io <weizhou.lan@daocloud.io>
2 years ago
Cyclinder
3eb0a4071a
set default value of name to "k8s-pod-network" ( #8813 )
Signed-off-by: cyclinder qifeng.guo@daocloud.io
2 years ago
Oogy
5684610a55
Support metallb peer password ( #8792 )
* support metallb peer password
* add MetalLB BGP password example
2 years ago
Samuel Liu
f26f544ff6
[kube-ovn]: update kube-ovn version and sync some feature ( #8790 )
* [kube-ovn]: some feature
kube-ovn vlan mode
ipv6/ipv4 dual stack
...
* remove unused env
* fix readinessprobe
2 years ago
Ajarmar
b9e5b0cb53
UpCloud server plan, firewall, load balancer integration ( #8758 )
* [upcloud] add option to use preconfigured cpu/mem plan
* [upcloud] add option to use firewall rules for API server/SSH access
* [upcloud] add option to use managed load balancer
2 years ago
Necatican Yıldırım
13443b05a6
Overhaul Cilium manifests to match the newer versions ( #8717 )
* [cilium] Separate templates for cilium, cilium-operator, and hubble installations
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Update cilium-operator templates
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Allow using custom args and mounting extra volumes for the Cilium Operator
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Update the cilium configmap to filter out the deprecated variables, and add the new variables
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Add an option to use Wireguard encryption on Cilium 1.10 and up
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Update cilium-agent templates
Signed-off-by: necatican <necaticanyildirim@gmail.com>
* [cilium] Bump Cilium version to 1.11.3
Signed-off-by: necatican <necaticanyildirim@gmail.com>
2 years ago
Andrew Zagorodnuk
e70c00a0fe
fix: Waiting until Volumes will be detached from the node on graceful node removal ( #8739 )
2 years ago
spaced
bb67b654c5
local volume provisioner should not run on control plane nodes by default ( #8805 )
2 years ago
Kenichi Omichi
aef25819bc
nit: Add offline note for kube-* images ( #8718 )
2 years ago
weizhoublue
1d96f465f4
arm64 support of cilium ( #8803 )
when cilium v1.10 , it is ok to support arm64
https://cilium.io/blog/2021/05/20/cilium-110
Signed-off-by: weizhou.lan@daocloud.io <weizhou.lan@daocloud.io>
2 years ago
emiran-orange
8f618ab408
Fix condition on kata_containers_version/kube_version when kata_containers_enabled is false ( #8804 )
2 years ago
Hugo Blom
5296d7ef9c
Added playbook to wait for cloud-init to finish ( #8799 )
2 years ago
Robin Wallace
b715500b48
csi: bump upcloud csi driver ( #8784 )
2 years ago
Alessio Greggi
37a5271f5a
feat: add variables to manage makeIPTablesUtilChains and streamingConnectionIdleTimeout kubelet parameters ( #8796 )
2 years ago
Robin Wallace
42fc71fafa
[PodSecurityPolicy] Move the install of psp ( #8744 )
2 years ago
Victor Morales
02b6e4833a
Update Kata Containers runtime ( #8797 )
* Update Kata containers binary to 2.4.1 version
* Update overhead kata runtime values
* Fix kata-qemu default values in CRI-O
2 years ago
Andy
323a111362
[kubelet] set correct resolv.conf for Ubuntu 22.04 ( #8795 )
2 years ago
Alessio Greggi
e7df4d3dd9
add support for `service-account-lookup` parameter ( #8781 )
* feat: add variable to manage service-account-lookup on kube-apiserver
* docs: add documentation about service-account-lookup variable
2 years ago
David Louks
3e52a0db95
Add optional setting for ca data in auth webhook ( #8777 )
* Add optional setting for ca data in auth webhook
* add webhook token auth variables to sample inventory
2 years ago
Cristian Calin
94484873d1
[containerd] add 1.6.4 which is needed for kubernetes 1.24.0 and make it the default ( #8791 )
2 years ago
Elif Akyıldırım
0d6ea85167
Assert that IP range is enough for the nodes ( #8720 )
* Assert that IP range is enough for the nodes
Co-authored-by: Necatican Yıldırım <necaticanyildirim@gmail.com>
* Fixed whitespace
* Fixed errors
* Fixed errors
Co-authored-by: Necatican Yıldırım <necaticanyildirim@gmail.com>
2 years ago
Florian Ruynat
674ec92224
Add crictl 1.24 for new k8s version ( #8787 )
2 years ago
Victor Morales
e7e5037a86
Add a container_manager validation ( #8785 )
2 years ago
Kenichi Omichi
fbcf426240
Drop containerd 1.4 support ( #8780 )
The version 1.4 of containerd has been End of Life since March 3, 2022
as https://containerd.io/releases/#support-horizon
It is nice to drop the support from Kubespray also to follow containerd.
2 years ago
Mohamed Zaian
2301554e98
[kubernetes] add hashes for 1.24.0 ( #8783 )
2 years ago
Calin Cristian Andrei
5bc35002ba
[remove-etcd-node] fix json path query
2 years ago
Calin Cristian Andrei
9143810a4d
[CI] add remove node job
2 years ago
Calin Cristian Andrei
8f118fb619
[reset] fix task inclusion logic for network plugin
2 years ago
Calin Cristian Andrei
1113460b68
[cri-o] molecule switch from ubuntu 18 to ubuntu 20
2 years ago
Florian Ruynat
74c7e009b7
Move flannel to kubespray/quay for CI ( #8774 )
2 years ago
Lubos Mercl
c20ab7d987
add fix for GCP CSI driver ( #8616 )
Signed-off-by: Lubos Mercl <lubos.mercl@gmail.com>
2 years ago
Robin Wallace
fe66121287
[Openstack] master foreach and fixes ( #8709 )
* [openstack] fix for new network modules
* [openstack] for-each master nodes
2 years ago
Cristian Calin
9605bbaa67
[nerdctl] upgrade to 0.19.0 ( #8772 )
2 years ago
Cristian Calin
b7ce6a9f79
[ansible] upgrade to 5.7 ( #8771 )
2 years ago