Erik Stidham
9f9f70aade
Update Calico to 2.4.1 release.
- Switched Calico images to be pulled from quay.io
- Updated Canal too
7 years ago
Matthew Mosesohn
ca3050ec3d
Update to Kubernetes v1.7.3 ( #1549 )
Change kubelet deploy mode to host
Enable cri and qos per cgroup for kubelet
Update CoreOS images
Add upgrade hook for switching from kubelet deployment from docker to host.
Bump machine type for ubuntu-rkt-sep
7 years ago
Vijay Katam
97031f9133
Make epel-release install configurable ( #1497 )
7 years ago
Vijay Katam
c92506e2e7
Add calico variable that enables ignoring Kernel's RPF Setting ( #1493 )
7 years ago
Kevin Lefevre
65a9772adf
Add OpenStack LBaaS support ( #1506 )
7 years ago
Anton
1e07ee6cc4
etcd_compaction_retention every 8 hour ( #1527 )
7 years ago
Miad Abrin
3c710219a1
Fix Some Typos in kubernetes master role ( #1547 )
* Fix Typo etc3 -> etcd3
* Fix typo in post-upgrade of master. stop -> start
7 years ago
Maxim Krasilnikov
2ba285a544
Fixed deploy cluster with vault cert manager ( #1548 )
* Added custom ips to etcd vault distributed certificates
* Added custom ips to kube-master vault distributed certificates
* Added comment about issue_cert_copy_ca var in vault/issue_cert role file
* Generate kube-proxy, controller-manager and scheduler certificates by vault
* Revert "Disable vault from CI (#1546 )"
This reverts commit 781f31d2b8
.
* Fixed upgrade cluster with vault cert manager
* Remove vault dir in reset playbook
7 years ago
Xavier Lange
3bfad5ca73
Bump etcd to 3.2.4 ( #1468 )
7 years ago
Matthew Mosesohn
df28db0066
Fix cert and netchecker upgrade issues ( #1543 )
* Bump tag for upgrade CI, fix netchecker upgrade
netchecker-server was changed from pod to deployment, so
we need an upgrade hook for it.
CI now uses v2.1.1 as a basis for upgrade.
* Fix upgrades for certs from non-rbac to rbac
7 years ago
Jan Jungnickel
20183f3860
Bump Calico CNI Plugin to 1.8.0 ( #1458 )
This aligns calico component versions with Calico release 2.1.5 and
fixes an issue with nodes being unable to schedule existing workloads
as per [#349 ](https://github.com/projectcalico/cni-plugin/issues/349 )
7 years ago
Matthew Mosesohn
2645e88b0c
Fix vault setup partially ( #1531 )
This does not address per-node certs and scheduler/proxy/controller-manager
component certs which are now required. This should be handled in a
follow-up patch.
7 years ago
Vijay Katam
55ba81fee5
Add changed_when: false to rpm query
7 years ago
Brad Beam
af007c7189
Fixing netchecker-server type - pod => deployment ( #1509 )
7 years ago
Seungkyu Ahn
b22bef5cfb
Apply RBAC to efk and create fluentd.conf
Making fluentd.conf as configmap to change configuration.
Change elasticsearch rc to deployment.
Having installed previous elastaicsearch as rc, first should delete that.
7 years ago
Vijay Katam
7ad5523113
restrict rpm query to redhat
7 years ago
Vijay Katam
5efda3eda9
Configurable docker yum repos, systemd fix
* Make yum repos used for installing docker rpms configurable
* TasksMax is only supported in systemd version >= 226
* Change to systemd file should restart docker
7 years ago
nico
cc9f3ea938
Fix enforce-node-allocatable option
Closes #1228
pods is default enforcement
see https://kubernetes.io/docs/tasks/administer-cluster/reserve-compute-resources/
add
update
7 years ago
Alexander Chumakov
8bc717a55c
Update flannel from 0.6.2 to 0.8.0
7 years ago
Brad Beam
d09222c900
Removing run_once in these tasks so that etcd ca certs get propogated properly to worker nodes
without this etcd ca certs dont exist on worker nodes causing calico to fail
7 years ago
magnon-bliex
38eb1d548a
fixed typo
7 years ago
Anton
e0960f6288
FIX: Unneded (extra) cycles in some tasks ( #1393 )
7 years ago
timtoum
3e457e4edf
Enable weave seed mode for kubespray ( #1414 )
* Enable weave seed mode for kubespray
* fix task Weave seed | Set peers if existing peers
* fix mac address variabilisation
* fix default values
* fix include seed condition
* change weave var to default values
* fix Set peers if existing peers
7 years ago
Dann Bohn
c4894d6092
add newline after expanding user information
7 years ago
Hassan Zamani
3fb0383df4
Add etcd metrics flag
7 years ago
John Ko
018b5039e7
set loadbalancer_apiserver_localhost default true
to match this https://github.com/kubernetes-incubator/kubespray/blob/master/roles/kubernetes/node/tasks/main.yml#L20
and the documented behaviour in HA docs
related to #1456
@rsmitty
7 years ago
jwfang
3d87f23bf5
uncomment unintended local changes
7 years ago
jwfang
789910d8eb
remote unused netchecker-agent-hostnet-ds.j2
7 years ago
jwfang
a8e6a0763d
run netchecker-server with list pods
7 years ago
jwfang
e1386ba604
only patch system:kube-dns role for old dns
7 years ago
jwfang
83deecb9e9
Revert "no need to patch system:kube-dns"
This reverts commit c2ea8c588a
.
7 years ago
jwfang
d8dcb8f6e0
no need to patch system:kube-dns
7 years ago
jwfang
552b2f0635
change authorization_modes default value
7 years ago
jwfang
0b3badf3d8
revert calico-related changes
7 years ago
jwfang
cea3e224aa
change authorization_modes default value
7 years ago
jwfang
1eaf0e1c63
rename task
7 years ago
jwfang
2cda982345
binding group system:nodes to clusterrole calico-role
7 years ago
jwfang
c9734b6d7b
run calico-policy-controller with proper sa/role/rolebinding
7 years ago
jwfang
fd01377f12
remove more bins when reset
7 years ago
jwfang
092bf07cbf
basic rbac support
7 years ago
Ubuntu
5145a8e8be
higher draining timeouts
7 years ago
Dann Bohn
d1f58fed4c
Template out known_users.csv, optionally add groups
7 years ago
Martin Joehren
12e918bd31
add possibility to ignore the hostname override
7 years ago
Brad Beam
e0bf8b2aab
Adding recursive=true for rkt kubelet dir
Fixes #1434
7 years ago
Delfer
9f45eba6f6
Kubernetes upgrade to 1.6.7
7 years ago
Spencer Smith
d1a02bd3e9
match kubespray-defaults dns mode with k8s-cluster setting
7 years ago
Vladimir Kozyrev
e26be9cb8a
add private dns server for a specific zone
7 years ago
Kevin Jing Qiu
a742d10c54
Allow calico ipPool to be created with mode "cross-subnet"
7 years ago
Hans Kristian Flaatten
38f5d1b18e
Set kubedns minimum replicas to 2
7 years ago
Abdelsalam Abbas
5f75d4c099
Uncodron Masters which have scheduling Enabled
7 years ago