501deecdd0
Downgrade version of coredns to 1.8.6 for compatibility with 1.23-1.24 ( #9846 )
2023-03-02 17:56:57 -08:00
8b3f3c04cc
[kubernetes] Add hashes for 1.26.2, 1.25.7, 1.24.11 ( #9829 )
2023-03-01 15:31:17 -08:00
ecd649846a
[containerd] add hashes for 1.6.19 ( #9838 )
2023-02-28 15:35:18 -08:00
27c2d7e9e2
Replace semicolons by commas in options ( #9840 )
2023-02-28 07:33:16 -08:00
5cbcec8968
Add resources section to all containers releated to Vsphere CSI driver ( #9687 )
2023-02-27 02:36:20 -08:00
62f34c6085
add image garbage collection ( #9832 )
2023-02-27 00:26:19 -08:00
260dad8f10
[ingress-nginx] upgrade to 1.6.4 ( #9818 )
2023-02-23 01:35:34 -08:00
c950bfface
[containerd] add hashes for 1.5.17, 1.5.18, 1.6.17, 1.6.8 ( #9814 )
2023-02-22 19:13:06 -08:00
4aacec4542
fix calico rbac issue ( #9806 )
2023-02-20 01:43:40 -08:00
6278b12af6
fixed clinet to client
2023-02-20 10:09:03 +01:00
64e4de371e
fix(kubelet): no cloud config for external cloud provider ( #9793 )
2023-02-20 01:07:40 -08:00
ad4958249f
fix(crio): First runc then crictl ( #9780 )
2023-02-19 22:27:38 -08:00
3fd7d91452
Update nodelocaldns to 1.22.18 ( #9800 )
...
Cf. ceb37c3a5c
2023-02-19 22:23:38 -08:00
4ba1df5237
Fix kubernetes-app/argocd: download related things with the download role ( #9786 )
...
* Fix yq install in argocd role: use download_file instead of get_url
* Fix use download_file instead of get_url to download argocd-install manifest in argocd role
* Fix order and add arm64 checksum
* Fix: Failed to template loop_control.label: 'None'
2023-02-19 16:11:37 -08:00
145c80e9ab
Fix containerd config_path error when containerd_registries is configed ( #9770 )
...
Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>
2023-02-16 20:57:39 -08:00
ab0e06eae6
Fix CentOS Extras repo url for Oracle Linux 7 aarch64 ( #9791 )
2023-02-15 17:43:38 -08:00
6ff845a199
Enable control plane load balancing for kube-vip ( #9785 )
...
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
2023-02-12 19:25:28 -08:00
2838a7c304
add proxy_env variable to apt_key cleanup task ( #9766 )
2023-02-09 06:38:22 -08:00
2788a02096
Fix a bug in removing kubelet data dir ( #9764 )
2023-02-08 19:04:36 -08:00
d81978625c
Update cri-o archive checksum ( #9761 )
...
Signed-off-by: Kasanic, Denis <denisx.kasanic@intel.com>
2023-02-06 06:25:01 -08:00
2c93c997cf
pre-commit autocorrected files ( #9750 )
2023-02-06 01:35:16 -08:00
10337f2fcb
skip ensuring ntp packages in coreos ( #9742 )
...
Check OS when ensuring NTP package and tzdata package.
2023-02-06 01:35:04 -08:00
6c41191646
Add support for PodSecurityStandards ( #9713 )
2023-02-06 01:27:01 -08:00
7730cfd619
fix: add ipamconfigs resource for calico ( #9755 )
...
Signed-off-by: chaunceyjiang <chaunceyjiang@gmail.com>
2023-02-05 15:50:30 -08:00
1853085ffe
feat(cinder-csi): Allow deletionPolicy to be configurable ( #9736 )
2023-02-02 15:46:28 -08:00
9247137e60
Replace label `k8s-app: nodelocaldns` in DaemonSet template by `k8s-app: node-local-dns` ( #9745 )
2023-02-02 15:42:28 -08:00
e8f048c71d
[argocd] update argocd to v2.5.10 ( #9753 )
...
Signed-off-by: yanggang <gang.yang@daocloud.io>
2023-02-02 15:38:29 -08:00
0707c8ea6f
fix: with_item to with_dict ( #9729 )
...
Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>
2023-01-31 03:18:50 -08:00
36c6de9abd
Fix cilium's hubble ui configuration ( #9735 )
...
This fixes the CrashLoopBackoff error that appears because envoy
configuration has changed a lot and upstream removed the envoy proxy to
use nginx only instead. Those changes are based on upstream cilium helm.
2023-01-31 00:28:48 -08:00
c5debf013c
Update kubevip to v0.5.8 ( #9734 )
...
Signed-off-by: hang.jiang <hang.jiang@daocloud.io>
2023-01-31 00:24:55 -08:00
f9cc8ae10c
[kubernetes] Make kubernetes v1.26 default ( #9732 )
...
* make-kube-1.26-default
* fix-bugs
2023-01-31 00:24:48 -08:00
94dd02121b
Update containerd version : containerd1.6.16. ( #9727 )
...
Signed-off-by: yanggang <gang.yang@daocloud.io>
2023-01-31 00:16:48 -08:00
b9a34b83d4
[argocd] update argocd to v2.5.9 ( #9723 )
...
Signed-off-by: yanggang <gang.yang@daocloud.io>
2023-01-28 19:14:33 -08:00
8d6cfd6e53
[argocd] update argocd to v2.5.8 ( #9708 )
...
Signed-off-by: yanggang <gang.yang@daocloud.io>
Signed-off-by: yanggang <gang.yang@daocloud.io>
2023-01-27 00:14:25 -08:00
ee2193d4cf
Add dns configuration for cert manager ( #9673 )
...
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
2023-01-23 17:42:15 -08:00
5fbbcedebc
9693: Fix comma-separated-list splitting of kubelet_enforce_node_allocatable ( #9694 )
...
See https://github.com/kubernetes-sigs/kubespray/issues/9693
2023-01-23 16:20:17 -08:00
18f2abad2f
Cleanup v1.23.x missing references/conditions/hashes ( #9698 )
2023-01-23 16:16:16 -08:00
391dd97f95
[kubernetes] support 1.26.x ( #9570 )
2023-01-23 00:10:11 -08:00
34d0451585
Update KUBESPRAY_VERSION and kube_version_min_required (with hashes cleanup) ( #9691 )
2023-01-20 14:11:54 -08:00
c4346e590f
kubeadm/etcd: use config to download certificate ( #9609 )
...
This commit uses a kubeadm join config to pull down cert for etcd in
workers nodes (which is needed in some circumstances, for instance with
calico or cilium).
The previous way didn't allow us to pass certain parameters which was
typically given in the config in other kubeadm invokations in Kubespray.
This made kubeadm produced some errors for some edge cases.
For example, in our deployment we don't have a default route and even
though it's only to download the certificates, kubeadm produce an error
`unable to select an IP from default routes` (these command are kubeadm
controlplane command, so kubeadm does some additional checks). This is
fixed by specifying `advertiseAddress` within the kubeadm config.
Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
2023-01-20 00:26:16 -08:00
bd81c615c3
Add k8s 1.24.10 hashes ( #9688 )
2023-01-19 14:46:15 -08:00
3d9fd082ff
[containerd] add hashes for 1.5.x ( #9678 )
2023-01-19 07:36:38 -08:00
826282fe89
Add k8s hashes for k8s version. ( #9685 )
...
Signed-off-by: yanggang <gang.yang@daocloud.io>
Signed-off-by: yanggang <gang.yang@daocloud.io>
2023-01-19 05:30:35 -08:00
374438a3d6
feat(calico): add possibility to enable calico floatingIPs feature ( #9680 )
...
Add a variable `calico_felix_floatingIPs` which permit to enable calico feature `floatingIPs`
(disabled per default).
Signed-off-by: MatthieuFin <matthieu2717@gmail.com>
#9679
2023-01-18 15:42:34 -08:00
fd80ef1ff1
[argocd] update argocd to v2.5.7 ( #9682 )
...
Signed-off-by: yanggang <gang.yang@daocloud.io>
Signed-off-by: yanggang <gang.yang@daocloud.io>
2023-01-18 15:38:34 -08:00
235173bb5f
[flannel] update to v0.20.2 & make it default ( #9675 )
2023-01-18 15:26:34 -08:00
db94812163
bump cni-plugins to v1.2.0 ( #9671 )
...
Signed-off-by: cyclinder qifeng.guo@daocloud.io
Signed-off-by: cyclinder qifeng.guo@daocloud.io
2023-01-17 00:12:32 -08:00
4a6eb7eaa2
enable back kubelet_authorization_mode_webhook by default ( #9662 )
...
In 6db6c8678c
2023-01-16 23:56:32 -08:00
8a03bb1bb4
add containerd config_path ( #9566 )
...
Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>
Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>
2023-01-16 23:42:32 -08:00
d919c58e21
[multus] added support for mixed type of container engine ( #9224 )
...
* [multus] added support for mixed type of container engine
* [multus] fixed for using with cluster/upgrade-cluster/scale playbooks
2023-01-16 23:30:33 -08:00
Jiffs Maverick
Mohamed Zaian
Mykola Ulianytskyi (Nikolay Ulyanitsky)
Eugene Artemenko
Jack
JaneLiuL
Karl Fischer
Maxime Leroy
Marijn van der Giesen
Mathieu Parent
pli
rongfu.leng
王煎饼
ERIK
Samuel BECK
Ho Kim
Denis Kasanic
Bas
Haitian Chen
manzsolutions-lpr
Chauncey
Kevin Huang
stelucz
杨刚 (成都)
James
蒋航
Kay Yan
Tristan
Florian Ruynat
Arthur Outhenin-Chalandre
MatthieuFin
Cyclinder
rongfu.leng
Vitaly Yakovenko