kubernetes-sigs
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,937 Commits
29 Branches
80 Tags
161 MiB
Commit Graph

4652 Commits (374438a3d631e98b34db4433d972fb4a221c0505)

Author SHA1 Message Date
MatthieuFin 374438a3d6
feat(calico): add possibility to enable calico floatingIPs feature (#9680) 
Add a variable `calico_felix_floatingIPs` which permit to enable calico feature `floatingIPs`
(disabled per default).

Signed-off-by: MatthieuFin <matthieu2717@gmail.com>

 #9679
 2023-01-18 15:42:34 -08:00
yanggang fd80ef1ff1
[argocd] update argocd to v2.5.7 (#9682) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-18 15:38:34 -08:00
Mohamed Zaian 235173bb5f
[flannel] update to v0.20.2 & make it default (#9675) 2023-01-18 15:26:34 -08:00
Cyclinder db94812163
bump cni-plugins to v1.2.0 (#9671) 
Signed-off-by: cyclinder qifeng.guo@daocloud.io

Signed-off-by: cyclinder qifeng.guo@daocloud.io
 2023-01-17 00:12:32 -08:00
Arthur Outhenin-Chalandre 4a6eb7eaa2
enable back kubelet_authorization_mode_webhook by default (#9662) 
In 6db6c8678c, this was disabled becaue
kubesrpay gave too much permissions that were not needed. This commit
re-enable back this option by default and also removes the extra
permissions that kubespray gave that were in fact not needed.

Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>

Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
 2023-01-16 23:56:32 -08:00
rongfu.leng 8a03bb1bb4
add containerd config_path (#9566) 
Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>

Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>
 2023-01-16 23:42:32 -08:00
Vitaly Yakovenko d919c58e21
[multus] added support for mixed type of container engine (#9224) 
* [multus] added support for mixed type of container engine

* [multus] fixed for using with cluster/upgrade-cluster/scale playbooks
 2023-01-16 23:30:33 -08:00
Mohamed Zaian 19bc610f44
Update pause image version to v3.8 (#9668) 
Signed-off-by: Mohamed Zaian <mohamedzaian@gmail.com>

Signed-off-by: Mohamed Zaian <mohamedzaian@gmail.com>
 2023-01-16 15:30:10 -08:00
Mohamed Zaian c7cffb14a7
[cert-manager] update cert-manager to v1.11.0 (#9661) 2023-01-16 02:36:51 -08:00
Jochen Friedrich 6f61f3d9cb
Support OVN Interconnect (#9599) 
Mostly taken from: https://raw.githubusercontent.com/kubeovn/kube-ovn/master/yamls/ovn-ic.yaml.j2
 2023-01-16 00:08:52 -08:00
yanggang 6b4bb2a121
[argocd] update argocd to v2.5.6 (#9654) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-15 21:16:50 -08:00
ERIK e288449c5d
Update cri-dockerd version (#9659) 
* Skip retry operation with containerd when etcd installed on host VM (#9560)

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

* Update cri-dockerd version

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
Co-authored-by: Eugene Artemenko <artemenko.evgeniy@gmail.com>
 2023-01-15 21:12:51 -08:00
László Rafael ea35021c96
Add defaults for external_vsphere_user and external_vsphere_password in the vsphere csi_driver (#9664) 2023-01-14 14:24:14 -08:00
Eugene Artemenko 6f1352eb53
Skip retry operation with containerd when etcd installed on host VM (#9560) 2023-01-10 15:53:20 -08:00
yanggang 6549bb12fc
follow containerd1 1.16.15 (#9644) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-08 17:59:28 -08:00
Kay Yan 843e908fa4
update-calico-VXLAN-docs (#9639) 2023-01-06 00:00:00 -08:00
R. P. Taylor 0ff883afeb
streamline ansible_default_ipv4 gathering loop (#9281) 2023-01-05 11:59:58 -08:00
Marijn van der Giesen 0d5bcd3e20
feat(coredns): Forward extra domains to coredns kubernetes plugin (#9635) 2023-01-05 06:57:58 -08:00
tu1h a8cef962e2
Add retry to avoid 'unknown' state for calicoctl (#9633) 
Signed-off-by: tu1h <lihai.tu@daocloud.io>

Signed-off-by: tu1h <lihai.tu@daocloud.io>
 2023-01-05 05:09:58 -08:00
Cyclinder b50890172b
calico: add vxlan-v6.calico to the list of NM unmanaged interfaces (#9631) 
Signed-off-by: cyclinder qifeng.guo@daocloud.io

Signed-off-by: cyclinder qifeng.guo@daocloud.io
 2023-01-05 04:29:58 -08:00
Kay Yan 6674438849
fix-ci-issue (#9640) 2023-01-05 00:11:58 -08:00
Ho Kim 4bc5e8d912
Skip removing nodes if cluster is not set (#9430) 2023-01-03 05:03:32 -08:00
mKlaris 050fde6327
Add enableServicesElection env variable. (#9595) 2023-01-02 18:35:33 -08:00
Jochen Friedrich 4d3104b334
Reset role: Remove kube-ovn log directories (#9625) 2023-01-02 18:29:30 -08:00
my-git9 85fa6af313
cleanup: replace node-role.kubernetes.io/master (#9627) 
Signed-off-by: xin.li <xin.li@daocloud.io>

Signed-off-by: xin.li <xin.li@daocloud.io>
 2023-01-01 13:59:32 -08:00
Shelming.Song 1c4db6132d
optimize cgroups settings for node reserved (#9209) 
* optimize cgroups settings for node reserved

* fix

* set cgroup slice for multi container engine

* set cgroup slice for crio

* add reserved cgroups variables to sample files

* Compatible with cgroup path for different container managers

* add cgroups doc

* fix markdown
 2022-12-30 08:05:30 -08:00
Jochen Friedrich 744c81d451
Remove ovn.kubernetes.io/ovs_dp_type from nodeSelector (#9594) 
Remove extra tag requirement preventing openvswitch container to start.
 2022-12-29 01:37:29 -08:00
Kenichi Omichi 61be93b173
Drop calico v3.21 support (#9515) 
At the upstream calico development, the v3.21 branch is not updated
over 2 monthes. In addition, unnecessary error message is output at
Kubespray deployment due to different URLs for calico v3.21 or v3.22+
This drops the v3.21 support to solve the issue.
 2022-12-29 01:29:31 -08:00
ERIK 406fbdb4e7
Update the tag of the flannel image (#9528) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2022-12-28 00:55:27 -08:00
Jochen Friedrich 136f14dec4
Cluster support for ovn-central. (#9596) 
Without minimal cluster configuration, even on a one node control plane,
the health check of the ovn-cental container always fails as it queries the
cluster/status.
 2022-12-27 20:51:27 -08:00
Marijn van der Giesen ab80342750
[feat] Add custom options to coredns kubernets plugin (#9608) 2022-12-27 18:21:27 -08:00
Kevin Huang 2c2e608eac
fix(k8s-certs-renew): Use kube_apiserver_port instead of hard-coding (#9620) 
Signed-off-by: Kevin Huang <git@kevin.huang.to>

Signed-off-by: Kevin Huang <git@kevin.huang.to>
 2022-12-27 18:17:35 -08:00
Kay Yan 93f71df628
Remove CNI BIN dependency for cilium (#9563) 
* remove-cni-denpendeny-for-cilium

* remove-cni-denpendeny-for-cilium
 2022-12-27 01:31:28 -08:00
tu1h 791064a3d9
Allow custom timeout for kubeadm init (#9617) 
Signed-off-by: tu1h <lihai.tu@daocloud.io>

Signed-off-by: tu1h <lihai.tu@daocloud.io>
 2022-12-27 00:53:28 -08:00
Kenichi Omichi e90f32bdee
Fix checksum of ciliumcli v0.12.5 (#9614) 
The checksum was different and the download was failed.
This update the checksum by getting valid checksum from [1] to
fix the issue.

[1]: https://github.com/cilium/cilium-cli/releases/download/v0.12.5/cilium-linux-arm64.tar.gz.sha256sum
 2022-12-27 00:49:28 -08:00
Maxime Leroy 9fe89a0641
fix(apps): cinder: wrong rbac for csi-snapshotter-role (#9610) 2022-12-27 00:45:28 -08:00
Mohamed Zaian 14699f5e98
[helm] upgrade to 3.10.3 (#9605) 2022-12-25 16:01:26 -08:00
Mohamed Zaian 438da0c8e6
[argocd] update argocd to v2.5.5 (#9604) 2022-12-22 00:53:25 -08:00
emiran-orange 25f317233c
Remove immutable flag from /var/lib/kubelet subdirs (#9597) 
* Remove immutable flag from /var/lib/kubelet subdirs

* Find files before changing attributes
 2022-12-21 18:55:25 -08:00
C-Romeo 5e4d68b848
fix kube token dir permissions (#9590) 2022-12-21 15:45:25 -08:00
yanggang 4728739597
follow containerd1.16.13 and 1.16.14 (#9585) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2022-12-21 00:35:28 -08:00
Kay Yan fc0d58ff48
fix-missing-control-plane-taint (#9592) 2022-12-19 15:57:43 -08:00
janaurka 491e260d20
Feature/add flannel wireguard encryption backend as option (#9583) 
* feat(): Add wireguard backend to flannel cni

As described in the flannel docs:
https://github.com/flannel-io/flannel/blob/master/Documentation/backends.md#wireguard

This does not support optional configuration methods like:
- setting a psk (will be autogenerated by default)
- chang listening ports
- change mode (defaults to 'separate')
- change PersistentKeepaliveInterval (defaults to 0)

* Add supported backends to flannel docs

* Fix markdown in docs
 2022-12-18 15:39:43 -08:00
Xieql c4d753c931 Fix annotation typo 
Signed-off-by: Xieql <xieqianglong@huawei.com>
 2022-12-15 18:40:30 +08:00
Lukas Najman ee3b7c5da5
Use the correct api version and resourcer type. The current values work but do not match the documentation, which can be confusing. (#9575) 2022-12-15 01:21:35 -08:00
Robin Wallace ccf60fc9ca
upcloud: Delete default reclaim policy (#9574) 2022-12-14 16:15:34 -08:00
Kay Yan a38a3e7ddf
upgrade-calico-v3.24.5 (#9580) 2022-12-14 09:21:36 -08:00
Book shu ff331f4eba
support flannel dual stack (#9564) 2022-12-13 20:47:35 -08:00
JSpon 94eae6a8dc
adjust calico-kube-controller to use hostNetwork when using etcd as datastore (#9573) 2022-12-13 20:41:34 -08:00
yanggang f8d6b54dbb
Add hashes for 1.25.5, 1.24.9, 1.23.15 and make v1.25.5 default (#9557) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2022-12-11 16:45:33 -08:00