github-mirrors/kubespray
1
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kubespray.git synced 2026-05-26 14:40:40 +03:00
Code Issues Packages Projects Releases Wiki Activity
7,182 Commits 56 Branches 90 Tags
f25b6fce1ccff886e8bd6f50e2972fb64ed57669
Commit Graph

4820 Commits

Author SHA1 Message Date
stelucz 9247137e60 Replace label k8s-app: nodelocaldns in DaemonSet template by k8s-app: node-local-dns (#9745) 2023-02-02 15:42:28 -08:00
杨刚 (成都) e8f048c71d [argocd] update argocd to v2.5.10 (#9753) 
Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-02-02 15:38:29 -08:00
rongfu.leng 0707c8ea6f fix: with_item to with_dict (#9729) 
Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>
 2023-01-31 03:18:50 -08:00
James 36c6de9abd Fix cilium's hubble ui configuration (#9735) 
This fixes the CrashLoopBackoff error that appears because envoy
configuration has changed a lot and upstream removed the envoy proxy to
use nginx only instead. Those changes are based on upstream cilium helm.
 2023-01-31 00:28:48 -08:00
蒋航 c5debf013c Update kubevip to v0.5.8 (#9734) 
Signed-off-by: hang.jiang <hang.jiang@daocloud.io>
 2023-01-31 00:24:55 -08:00
Kay Yan f9cc8ae10c [kubernetes] Make kubernetes v1.26 default (#9732) 
* make-kube-1.26-default

* fix-bugs
 2023-01-31 00:24:48 -08:00
杨刚 (成都) 94dd02121b Update containerd version : containerd1.6.16. (#9727) 
Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-31 00:16:48 -08:00
杨刚 (成都) b9a34b83d4 [argocd] update argocd to v2.5.9 (#9723) 
Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-28 19:14:33 -08:00
杨刚 8d6cfd6e53 [argocd] update argocd to v2.5.8 (#9708) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-27 00:14:25 -08:00
ERIK ee2193d4cf Add dns configuration for cert manager (#9673) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2023-01-23 17:42:15 -08:00
Tristan 5fbbcedebc 9693: Fix comma-separated-list splitting of kubelet_enforce_node_allocatable (#9694) 
See https://github.com/kubernetes-sigs/kubespray/issues/9693
 2023-01-23 16:20:17 -08:00
Florian Ruynat 18f2abad2f Cleanup v1.23.x missing references/conditions/hashes (#9698) 2023-01-23 16:16:16 -08:00
Mohamed Zaian 391dd97f95 [kubernetes] support 1.26.x (#9570) 2023-01-23 00:10:11 -08:00
Florian Ruynat 34d0451585 Update KUBESPRAY_VERSION and kube_version_min_required (with hashes cleanup) (#9691) 2023-01-20 14:11:54 -08:00
Arthur Outhenin-Chalandre c4346e590f kubeadm/etcd: use config to download certificate (#9609) 
This commit uses a kubeadm join config to pull down cert for etcd in
workers nodes (which is needed in some circumstances, for instance with
calico or cilium).

The previous way didn't allow us to pass certain parameters which was
typically given in the config in other kubeadm invokations in Kubespray.
This made kubeadm produced some errors for some edge cases.

For example, in our deployment we don't have a default route and even
though it's only to download the certificates, kubeadm produce an error
`unable to select an IP from default routes` (these command are kubeadm
controlplane command, so kubeadm does some additional checks). This is
fixed by specifying `advertiseAddress` within the kubeadm config.

Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>

Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
 2023-01-20 00:26:16 -08:00
Florian Ruynat bd81c615c3 Add k8s 1.24.10 hashes (#9688) 2023-01-19 14:46:15 -08:00
Mohamed Zaian 3d9fd082ff [containerd] add hashes for 1.5.x (#9678) 2023-01-19 07:36:38 -08:00
yanggang 826282fe89 Add k8s hashes for k8s version. (#9685) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-19 05:30:35 -08:00
MatthieuFin 374438a3d6 feat(calico): add possibility to enable calico floatingIPs feature (#9680) 
Add a variable `calico_felix_floatingIPs` which permit to enable calico feature `floatingIPs`
(disabled per default).

Signed-off-by: MatthieuFin <matthieu2717@gmail.com>

 #9679
 2023-01-18 15:42:34 -08:00
yanggang fd80ef1ff1 [argocd] update argocd to v2.5.7 (#9682) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-18 15:38:34 -08:00
Mohamed Zaian 235173bb5f [flannel] update to v0.20.2 & make it default (#9675) 2023-01-18 15:26:34 -08:00
Cyclinder db94812163 bump cni-plugins to v1.2.0 (#9671) 
Signed-off-by: cyclinder qifeng.guo@daocloud.io

Signed-off-by: cyclinder qifeng.guo@daocloud.io
 2023-01-17 00:12:32 -08:00
Arthur Outhenin-Chalandre 4a6eb7eaa2 enable back kubelet_authorization_mode_webhook by default (#9662) 
In 6db6c8678c, this was disabled becaue
kubesrpay gave too much permissions that were not needed. This commit
re-enable back this option by default and also removes the extra
permissions that kubespray gave that were in fact not needed.

Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>

Signed-off-by: Arthur Outhenin-Chalandre <arthur.outhenin-chalandre@proton.ch>
 2023-01-16 23:56:32 -08:00
rongfu.leng 8a03bb1bb4 add containerd config_path (#9566) 
Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>

Signed-off-by: rongfu.leng <rongfu.leng@daocloud.io>
 2023-01-16 23:42:32 -08:00
Vitaly Yakovenko d919c58e21 [multus] added support for mixed type of container engine (#9224) 
* [multus] added support for mixed type of container engine

* [multus] fixed for using with cluster/upgrade-cluster/scale playbooks
 2023-01-16 23:30:33 -08:00
Mohamed Zaian 19bc610f44 Update pause image version to v3.8 (#9668) 
Signed-off-by: Mohamed Zaian <mohamedzaian@gmail.com>

Signed-off-by: Mohamed Zaian <mohamedzaian@gmail.com>
 2023-01-16 15:30:10 -08:00
Mohamed Zaian c7cffb14a7 [cert-manager] update cert-manager to v1.11.0 (#9661) 2023-01-16 02:36:51 -08:00
Jochen Friedrich 6f61f3d9cb Support OVN Interconnect (#9599) 
Mostly taken from: https://raw.githubusercontent.com/kubeovn/kube-ovn/master/yamls/ovn-ic.yaml.j2
 2023-01-16 00:08:52 -08:00
yanggang 6b4bb2a121 [argocd] update argocd to v2.5.6 (#9654) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-15 21:16:50 -08:00
ERIK e288449c5d Update cri-dockerd version (#9659) 
* Skip retry operation with containerd when etcd installed on host VM (#9560)

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

* Update cri-dockerd version

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
Co-authored-by: Eugene Artemenko <artemenko.evgeniy@gmail.com>
 2023-01-15 21:12:51 -08:00
László Rafael ea35021c96 Add defaults for external_vsphere_user and external_vsphere_password in the vsphere csi_driver (#9664) 2023-01-14 14:24:14 -08:00
Eugene Artemenko 6f1352eb53 Skip retry operation with containerd when etcd installed on host VM (#9560) 2023-01-10 15:53:20 -08:00
yanggang 6549bb12fc follow containerd1 1.16.15 (#9644) 
Signed-off-by: yanggang <gang.yang@daocloud.io>

Signed-off-by: yanggang <gang.yang@daocloud.io>
 2023-01-08 17:59:28 -08:00
Kay Yan 843e908fa4 update-calico-VXLAN-docs (#9639) 2023-01-06 00:00:00 -08:00
R. P. Taylor 0ff883afeb streamline ansible_default_ipv4 gathering loop (#9281) 2023-01-05 11:59:58 -08:00
Marijn van der Giesen 0d5bcd3e20 feat(coredns): Forward extra domains to coredns kubernetes plugin (#9635) 2023-01-05 06:57:58 -08:00
tu1h a8cef962e2 Add retry to avoid 'unknown' state for calicoctl (#9633) 
Signed-off-by: tu1h <lihai.tu@daocloud.io>

Signed-off-by: tu1h <lihai.tu@daocloud.io>
 2023-01-05 05:09:58 -08:00
Cyclinder b50890172b calico: add vxlan-v6.calico to the list of NM unmanaged interfaces (#9631) 
Signed-off-by: cyclinder qifeng.guo@daocloud.io

Signed-off-by: cyclinder qifeng.guo@daocloud.io
 2023-01-05 04:29:58 -08:00
Kay Yan 6674438849 fix-ci-issue (#9640) 2023-01-05 00:11:58 -08:00
Ho Kim 4bc5e8d912 Skip removing nodes if cluster is not set (#9430) 2023-01-03 05:03:32 -08:00
mKlaris 050fde6327 Add enableServicesElection env variable. (#9595) 2023-01-02 18:35:33 -08:00
Jochen Friedrich 4d3104b334 Reset role: Remove kube-ovn log directories (#9625) 2023-01-02 18:29:30 -08:00
my-git9 85fa6af313 cleanup: replace node-role.kubernetes.io/master (#9627) 
Signed-off-by: xin.li <xin.li@daocloud.io>

Signed-off-by: xin.li <xin.li@daocloud.io>
 2023-01-01 13:59:32 -08:00
Shelming.Song 1c4db6132d optimize cgroups settings for node reserved (#9209) 
* optimize cgroups settings for node reserved

* fix

* set cgroup slice for multi container engine

* set cgroup slice for crio

* add reserved cgroups variables to sample files

* Compatible with cgroup path for different container managers

* add cgroups doc

* fix markdown
 2022-12-30 08:05:30 -08:00
Jochen Friedrich 744c81d451 Remove ovn.kubernetes.io/ovs_dp_type from nodeSelector (#9594) 
Remove extra tag requirement preventing openvswitch container to start.
 2022-12-29 01:37:29 -08:00
Kenichi Omichi 61be93b173 Drop calico v3.21 support (#9515) 
At the upstream calico development, the v3.21 branch is not updated
over 2 monthes. In addition, unnecessary error message is output at
Kubespray deployment due to different URLs for calico v3.21 or v3.22+
This drops the v3.21 support to solve the issue.
 2022-12-29 01:29:31 -08:00
ERIK 406fbdb4e7 Update the tag of the flannel image (#9528) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>

Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2022-12-28 00:55:27 -08:00
Jochen Friedrich 136f14dec4 Cluster support for ovn-central. (#9596) 
Without minimal cluster configuration, even on a one node control plane,
the health check of the ovn-cental container always fails as it queries the
cluster/status.
 2022-12-27 20:51:27 -08:00
Marijn van der Giesen ab80342750 [feat] Add custom options to coredns kubernets plugin (#9608) 2022-12-27 18:21:27 -08:00
Kevin Huang 2c2e608eac fix(k8s-certs-renew): Use kube_apiserver_port instead of hard-coding (#9620) 
Signed-off-by: Kevin Huang <git@kevin.huang.to>

Signed-off-by: Kevin Huang <git@kevin.huang.to>
 2022-12-27 18:17:35 -08:00