Ugur Can Ozturk
8cce6df80a
[external-lb]: kubelet.conf server address and kube-proxy api-server address fix ( #10490 )
...
* [external-lb-kubeconfig]: fix server address in worker kubelet.conf
Signed-off-by: Ugur Ozturk <ugurozturk918@gmail.com>
* [external-lb-kubeconfig]: fix server address in kube-proxy
Signed-off-by: Furkan Pehlivan <furkanpehlivan34@gmail.com>
---------
Signed-off-by: Ugur Ozturk <ugurozturk918@gmail.com>
Signed-off-by: Furkan Pehlivan <furkanpehlivan34@gmail.com>
Co-authored-by: Furkan Pehlivan <furkanpehlivan34@gmail.com>
2023-10-17 09:45:00 +02:00
Mohamed Omar Zaian
3e522a9f59
[calico] Make version 3.26.3 default ( #10526 )
2023-10-17 08:22:39 +02:00
Mohamed Omar Zaian
ae45de3584
[containerd] add hashes for version 1.7.7 ( #10525 )
2023-10-17 07:32:10 +02:00
Mohamed Omar Zaian
513b6dd6ad
[ingress-nginx] upgrade to 1.9.3 ( #10527 )
2023-10-17 05:42:13 +02:00
emiran-orange
e65050d3f4
Ability to define GPG key path for Docker APT ( #10513 )
2023-10-13 04:06:04 +02:00
Mohamed Omar Zaian
4a8a47d438
[ingress-nginx] upgrade to 1.9.0 ( #10493 )
2023-10-11 23:49:16 +02:00
ERIK
b2d8ec68a4
Fix restart network task cannot be skipped ( #10512 )
...
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
2023-10-11 05:50:37 +02:00
Elias-elastisys
d3101d65aa
Added templating to coredns error to allow for consolidation ( #10501 )
2023-10-10 14:32:41 +02:00
Ross Kusler
acb86c23f9
[kube-router] Add option to disable bgp-graceful-restart (10488) ( #10489 )
2023-10-07 04:52:45 +02:00
Mohamed Omar Zaian
4846f33136
[etcd] make etcd 3.5.9 default ( #10482 )
2023-09-29 00:26:42 -07:00
Mohamed Omar Zaian
de8d1f1a3b
[kubernetes] Kube-scheduler: remove/update deprecated component config v1beta3 ( #10484 )
2023-09-29 00:22:45 -07:00
Heather Lapointe
ddd7aa844c
[kata-containers] Update configuration to support kata 3.1.3. ( #10466 )
...
Namely, the libexec paths have changed since 2.5.
This also makes kata_containers_virtio_fs_cache configurable.
2023-09-28 00:33:33 -07:00
Feruzjon Muyassarov
1fd31ccc28
Refactor NRI activation for containerd and CRI-O ( #10470 )
...
Refactor NRI (Node Resource Interface) activation in CRI-O and
containerd. Introduce a shared variable, nri_enabled, to streamline
the process. Currently, enabling NRI requires a separate update of
defaults for each container runtime independently, without any
verification of NRI support for the specific version of containerd
or CRI-O in use.
With this commit, the previous approach is replaced. Now, a single
variable, nri_enabled, handles this functionality. Also, this commit
separates the responsibility of verifying NRI supported versions of
containerd and CRI-O from cluster administrators, and leaves it to
Ansible.
Signed-off-by: Feruzjon Muyassarov <feruzjon.muyassarov@intel.com>
2023-09-26 08:05:25 -07:00
Majid Garoosi
6f520eacf7
Bump nerdctl version 1.5.0 ( #10475 )
2023-09-26 05:05:36 -07:00
qlijin
a0eb7c0d5c
[cri-o] update to v1.28.1 ( #10480 )
2023-09-26 04:36:57 -07:00
Boris Barnier
94322ef72e
[kube-router] set default version to 1.6.0 ( #10478 )
...
Signed-off-by: Boris Barnier <bozzo@users.noreply.github.com>
2023-09-25 02:32:57 -07:00
蔣 航
c6ab6406c2
Add Retry for Applying PriorityClass ( #10469 )
...
Signed-off-by: hang.jiang <hang.jiang@daocloud.io>
2023-09-24 19:54:56 -07:00
Romain
2c132dccba
Fix etcdctl.sh TLS file path when not using kubeadm. ( #10467 )
2023-09-24 19:50:57 -07:00
Christian
7919a47165
[metallb] add config option for IPAddressPool avoidBuggyIPs ( #10458 )
...
* Add avoid_buggy_ips as optional
* Revert avoid_buggy_ips default back to false
* Change auto_assign to optional, default true
2023-09-21 20:29:49 -07:00
Jason Witkowski
7b2586943b
Fix: kube-apiserver tag will overwrite secrets-at-rest token if used independently ( #10460 )
...
Signed-off-by: Jason Witkowski <jwitko1@gmail.com>
2023-09-21 06:55:29 -07:00
Feruzjon Muyassarov
f964b3438d
Add configuration option for NRI in crio & containerd ( #10454 )
...
* [containerd] Add Configuration option for Node Resource Interface
Node Resource Interface (NRI) is a common is a common framework for
plugging domain or vendor-specific custom logic into container
runtime like containerd. With this commit, we introduce the
containerd_disable_nri configuration flag, providing cluster
administrators the flexibility to opt in or out (defaulted to 'out')
of this feature in containerd. In line with containerd's default
configuration, NRI is disabled by default in this containerd role
defaults.
Signed-off-by: Feruzjon Muyassarov <feruzjon.muyassarov@intel.com>
* [cri-o] Add configuration option for Node Resource Interface
Node Resource Interface (NRI) is a common is a common framework for
plugging domain or vendor-specific custom logic into container
runtimes like containerd/crio. With this commit, we introduce the
crio_enable_nri configuration flag, providing cluster
administrators the flexibility to opt in or out (defaulted to 'out')
of this feature in cri-o runtime. In line with crio's default
configuration, NRI is disabled by default in this cri-o role
defaults.
Signed-off-by: Feruzjon Muyassarov <feruzjon.muyassarov@intel.com>
---------
Signed-off-by: Feruzjon Muyassarov <feruzjon.muyassarov@intel.com>
2023-09-21 00:30:19 -07:00
Mathieu Parent
09f3caedaa
[download] Don't fail on 304 Not Modified ( #10452 )
...
i.e when file was not modified since last download
2023-09-21 00:20:20 -07:00
Mohamed Omar Zaian
fe4b1f6dee
[ingress-nginx] upgrade to 1.8.2 ( #10455 )
2023-09-20 19:17:56 -07:00
Mohamed Omar Zaian
bc5e33791f
[vsphere_csi] Update to 3.1.0 ( #10451 )
2023-09-20 04:56:00 -07:00
Romain
a81c6d5448
Add a way to configure reseted networking service name. ( #10428 )
2023-09-20 02:28:01 -07:00
Mohamed Omar Zaian
6b34e3ef08
[calico] Make version 3.26.1 default ( #10416 )
...
* [calico] Make version 3.26.1 default
* [calico] Separate calico-node and calico-cni-plugin service accounts
See: https://github.com/projectcalico/calico/pull/7106
2023-09-19 02:49:06 -07:00
Mohamed Omar Zaian
dbdc4d4123
[kubernetes] Add hashes for kubernetes 1.28.2, 1.27.6, 1.26.9 ( #10435 )
2023-09-18 05:40:32 -07:00
Mohamed Omar Zaian
c24c279df7
[containerd] add hashes for version 1.7.6, 1.6.24 ( #10439 )
2023-09-18 05:28:31 -07:00
Qasim Mehmood
0f243d751f
Use correct env var name for kube-vip per service leader election ( #10433 )
2023-09-14 02:22:17 -07:00
Toon Albers
31f6d38cd2
[cilium] fix: invalid hubble yaml if cilium_hubble_tls_generate is enabled ( #10430 )
2023-09-13 04:16:15 -07:00
Takuya Murakami
748b0b294d
[kubernetes] support 1.28.0 / 1.28.1 ( #10376 ) ( #10390 )
...
* [kubernetes] support 1.28.0/1.28.1 (#10376 )
* [kubernetes] Make 1.28.1 default (#10376 )
2023-09-11 19:42:12 -07:00
NierYYDS
af8210dfea
fix: add kubelet tag in task of fetch facts to avoid kubelet config inconsistencies ( #10423 )
...
when people run playbook with option `--tags=kubelet`, the kubelet config may changed, because some variables used in task populating `kubelet-config.yml` could be different with running task(`Fetch facts`)
2023-09-11 05:12:11 -07:00
Florian Ruynat
493969588e
Use cluster_name variable instead of hardcoded value in cinder-csi controller plugin ( #10422 )
2023-09-08 07:18:16 -07:00
Kay Yan
5ffdb7355a
cleanup-for-2.23.0 ( #10420 )
2023-09-08 04:40:13 -07:00
Kay Yan
c33e4d7bb7
fix-resolv.conf-nameserver-inline-comments ( #10415 )
2023-09-07 05:34:59 -07:00
Mohamed Omar Zaian
24b82917d1
[calico] add v3.25.2 and make it default ( #10414 )
2023-09-06 19:50:56 -07:00
Florian Ruynat
9696936b59
Fixup recover control plane playbook + add debian12/cilium test ( #10411 )
...
* Add debian12 cilium testing
* Fixup recover control plane playbook
2023-09-05 10:42:52 -07:00
NierYYDS
8fef156e8f
fix: specify owner to kube_owner in task of copy cni plugins ( #10407 )
...
if not set owner to kube_owner in unarchive module, the owner of /opt/cni/bin will changed to root, which is inconsistent with the previous task.
2023-09-04 02:29:49 -07:00
Kay Yan
8497528240
update-load-balancers-versions ( #10409 )
2023-09-03 23:57:49 -07:00
蔣 航
ebd71f6ad7
Fix Typo kubelet_topology_manager_policy ( #10384 )
...
Signed-off-by: hang.jiang <hang.jiang@daocloud.io>
2023-09-03 23:39:48 -07:00
Mohamed Omar Zaian
d646053c0e
[feat] Update metrics server to v0.6.4 ( #10400 )
2023-08-30 00:44:47 -07:00
Mohamed Omar Zaian
e84c1004df
[containerd] add hashes for 1.7.4-5 ( #10397 )
2023-08-28 19:29:20 -07:00
Daniel Strufe
e573a2f6d4
Add huawei cloud controller ( #10198 )
...
* Add huaweicloud as external cloud controller
* Add huaweicloud example config
* Rename AK,SK to ACCESS_KEY and SECRET_KEY
* Add reference to huaweicloud
* Fix variable naming
* Fix env var name
* Update example
* Fix variable naming
* Fix cloud_config path
* Add namespace for leader election
* Revert reviewers
* Delete OWNERS
Delete owners who are not responsible here.
* Fix build validation
2023-08-24 18:55:17 -07:00
Mohamed Omar Zaian
52c1826423
[kubernetes] Make 1.27.5 default ( #10392 )
...
* Add hashes for 1.27.5 1.26.8, 1.25.13
* Address CVE-2023-3955 , CVE-2023-3676
* Make kubernetes v1.27.5 default
2023-08-24 18:51:17 -07:00
Samuel Liu
e1881fae02
Install etcdutl file by default ( #10385 )
2023-08-23 07:04:22 -07:00
Victor Morales
5ed85094c2
Update checksum values ( #10369 )
...
The following binaries has been updated:
* crio
* krew
* runc
* crun
* gvisor
* nerdctl
* skopeo
* yq
Signed-off-by: Victor Morales <chipahuac@hotmail.com>
2023-08-18 09:46:29 -07:00
tenni
bf29ea55cf
fix: flatcar bootstrap ( #10363 )
2023-08-18 08:14:29 -07:00
Louis Tu
cafe4f1352
Add kubelet topology manager policy on the node ( #10370 )
...
Signed-off-by: tu1h <lihai.tu@daocloud.io>
2023-08-18 01:26:28 -07:00
Florian Ruynat
a8c1bccdd5
Move runroot from crio.conf to storage.conf ( #10372 )
2023-08-17 10:17:22 -07:00
Mohamed Omar Zaian
71cf553aa8
[containerd] add hashes for 1.7.3 , 1.6.22 , 1.6.23 ( #10368 )
2023-08-17 05:05:24 -07:00