diff --git a/roles/kubernetes-apps/network_plugin/cni/tasks/main.yml b/roles/kubernetes-apps/network_plugin/cni/tasks/main.yml
deleted file mode 100644
index a061756ae09d1f3663f1a32249a636287472a497..0000000000000000000000000000000000000000
--- a/roles/kubernetes-apps/network_plugin/cni/tasks/main.yml
+++ /dev/null
@@ -1,14 +0,0 @@
----
-- name: CNI | make sure /opt/cni/bin exists
- file:
- path: /opt/cni/bin
- state: directory
- mode: 0755
- owner: root
- group: root
-- name: CNI | Copy cni plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- remote_src: yes
diff --git a/roles/kubernetes-apps/network_plugin/meta/main.yml b/roles/kubernetes-apps/network_plugin/meta/main.yml
index 7874024d273a72b9874d337b9cdf8834a0c82c3f..c208839d37539e0dedd747134f428cddae737cb9 100644
--- a/roles/kubernetes-apps/network_plugin/meta/main.yml
+++ b/roles/kubernetes-apps/network_plugin/meta/main.yml
@@ -25,11 +25,6 @@ dependencies:
tags:
- contiv
- - role: kubernetes-apps/network_plugin/cni
- when: kube_network_plugin == 'cni'
- tags:
- - cni
-
- role: kubernetes-apps/network_plugin/kube-ovn
when: kube_network_plugin == 'kube-ovn'
tags:
diff --git a/roles/network_plugin/cilium/meta/main.yml b/roles/network_plugin/cilium/meta/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..9b7065f185423edeed2662c47e17ab972f637668
--- /dev/null
+++ b/roles/network_plugin/cilium/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+ - role: network_plugin/cni
diff --git a/roles/network_plugin/cilium/tasks/main.yml b/roles/network_plugin/cilium/tasks/main.yml
index 8038bdf427618740a4de9e053f2d94f0de3f9c57..2960c62535d45bfea0a8e5cc8ae634e1bc89d0e6 100755
--- a/roles/network_plugin/cilium/tasks/main.yml
+++ b/roles/network_plugin/cilium/tasks/main.yml
@@ -40,23 +40,6 @@
when:
- inventory_hostname in groups['kube-master']
-- name: Cilium | Set CNI directory permissions
- file:
- path: /opt/cni/bin
- state: directory
- owner: kube
- recurse: true
- mode: 0755
- register: cni_bin_dir
-
-- name: Cilium | Copy CNI plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- remote_src: yes
- when: cilium_enable_portmap
-
- name: Cilium | Enable portmap addon
template:
src: 000-cilium-portmap.conflist.j2
diff --git a/roles/network_plugin/cloud/tasks/main.yml b/roles/network_plugin/cloud/tasks/main.yml
deleted file mode 100644
index 5a680bdb1884ee4fa9aab93092ff554e27da7fb0..0000000000000000000000000000000000000000
--- a/roles/network_plugin/cloud/tasks/main.yml
+++ /dev/null
@@ -1,15 +0,0 @@
----
-- name: Cloud | Set cni directory permissions
- file:
- path: /opt/cni/bin
- state: directory
- owner: kube
- recurse: true
- mode: "u=rwX,g-rwx,o-rwx"
-
-- name: Canal | Copy cni plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- remote_src: yes
diff --git a/roles/network_plugin/cni/tasks/main.yml b/roles/network_plugin/cni/tasks/main.yml
index a061756ae09d1f3663f1a32249a636287472a497..d9f46939c6cacf786c4925dad2a36bcd2da86cb5 100644
--- a/roles/network_plugin/cni/tasks/main.yml
+++ b/roles/network_plugin/cni/tasks/main.yml
@@ -4,8 +4,9 @@
path: /opt/cni/bin
state: directory
mode: 0755
- owner: root
- group: root
+ owner: kube
+ recurse: true
+
- name: CNI | Copy cni plugins
unarchive:
src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
diff --git a/roles/network_plugin/contiv/meta/main.yml b/roles/network_plugin/contiv/meta/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..9b7065f185423edeed2662c47e17ab972f637668
--- /dev/null
+++ b/roles/network_plugin/contiv/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+ - role: network_plugin/cni
diff --git a/roles/network_plugin/contiv/tasks/main.yml b/roles/network_plugin/contiv/tasks/main.yml
index fafe1b5bd959c96429944b36edcdc096ba5eb69d..81ca64bdcc2c73ffe3ed89dc021b02e11b5d56c7 100644
--- a/roles/network_plugin/contiv/tasks/main.yml
+++ b/roles/network_plugin/contiv/tasks/main.yml
@@ -144,21 +144,6 @@
- contiv_enable_api_proxy
- contiv_generate_certificate
-- name: Contiv | Set cni directory permissions
- file:
- path: /opt/cni/bin
- state: directory
- owner: kube
- recurse: true
- mode: 0755
-
-- name: Contiv | Copy cni plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- remote_src: yes
-
- name: Contiv | Copy netctl binary from docker container
command: sh -c "{{ docker_bin_dir }}/docker rm -f netctl-binarycopy;
{{ docker_bin_dir }}/docker create --name netctl-binarycopy {{ contiv_image_repo }}:{{ contiv_image_tag }} &&
diff --git a/roles/network_plugin/flannel/meta/main.yml b/roles/network_plugin/flannel/meta/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..9b7065f185423edeed2662c47e17ab972f637668
--- /dev/null
+++ b/roles/network_plugin/flannel/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+ - role: network_plugin/cni
diff --git a/roles/network_plugin/flannel/tasks/main.yml b/roles/network_plugin/flannel/tasks/main.yml
index d187a8e19cbbfb7cca96ec18732ca4dbd8d1a626..d5a725baff05172ec9496531455f8d1bb66e5694 100644
--- a/roles/network_plugin/flannel/tasks/main.yml
+++ b/roles/network_plugin/flannel/tasks/main.yml
@@ -9,19 +9,3 @@
register: flannel_node_manifests
when:
- inventory_hostname in groups['kube-master']
-
-- name: Flannel | Set CNI directory permissions
- file:
- path: /opt/cni/bin
- state: directory
- owner: kube
- recurse: true
- mode: 0755
- register: cni_bin_dir
-
-- name: Flannel | Copy CNI plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- remote_src: yes
diff --git a/roles/network_plugin/kube-router/meta/main.yml b/roles/network_plugin/kube-router/meta/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..9b7065f185423edeed2662c47e17ab972f637668
--- /dev/null
+++ b/roles/network_plugin/kube-router/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+ - role: network_plugin/cni
diff --git a/roles/network_plugin/kube-router/tasks/main.yml b/roles/network_plugin/kube-router/tasks/main.yml
index 6c4a10508b6220bf0e76b53d9159a618d498f8d6..48d8abe325adab3a213b6113fa82d70a171274d4 100644
--- a/roles/network_plugin/kube-router/tasks/main.yml
+++ b/roles/network_plugin/kube-router/tasks/main.yml
@@ -3,22 +3,6 @@
include: annotate.yml
tags: annotate
-- name: kube-router | Set cni directory permissions
- file:
- path: /opt/cni/bin
- state: directory
- owner: kube
- recurse: true
- mode: 0755
-
-- name: kube-router | Copy cni plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- owner: kube
- remote_src: yes
-
- name: kube-router | Create config directory
file:
path: /var/lib/kube-router
diff --git a/roles/network_plugin/macvlan/meta/main.yml b/roles/network_plugin/macvlan/meta/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..9b7065f185423edeed2662c47e17ab972f637668
--- /dev/null
+++ b/roles/network_plugin/macvlan/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+ - role: network_plugin/cni
diff --git a/roles/network_plugin/macvlan/tasks/main.yml b/roles/network_plugin/macvlan/tasks/main.yml
index b0515089e4b4693210a1124a659d79a116bb7052..751c3471623dfe35effa43c7cdda24a4013af589 100644
--- a/roles/network_plugin/macvlan/tasks/main.yml
+++ b/roles/network_plugin/macvlan/tasks/main.yml
@@ -1,20 +1,4 @@
---
-
-- name: Macvlan | Set cni directory permissions
- file:
- path: /opt/cni/bin
- state: directory
- owner: kube
- recurse: true
- mode: 0755
-
-- name: Macvlan | Copy cni plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- remote_src: yes
-
- name: Macvlan | Retrieve Pod Cidr
command: "{{ bin_dir }}/kubectl get nodes {{ kube_override_hostname | default(inventory_hostname) }} -o jsonpath='{.spec.podCIDR}'"
register: node_pod_cidr_cmd
diff --git a/roles/network_plugin/meta/main.yml b/roles/network_plugin/meta/main.yml
index ae26bc7c3e4da8c1d185ecec4a4c8c9e8861be21..779bdfc5d8f0d96122851ee80e32fde7e05dc104 100644
--- a/roles/network_plugin/meta/main.yml
+++ b/roles/network_plugin/meta/main.yml
@@ -26,7 +26,7 @@ dependencies:
- canal
- role: network_plugin/cni
- when: kube_network_plugin == 'cni'
+ when: kube_network_plugin in ['cni', 'cloud']
tags:
- cni
@@ -50,9 +50,6 @@ dependencies:
tags:
- kube-router
- - role: network_plugin/cloud
- when: kube_network_plugin == 'cloud'
-
- role: network_plugin/multus
when: kube_network_plugin_multus
tags:
diff --git a/roles/network_plugin/weave/meta/main.yml b/roles/network_plugin/weave/meta/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..9b7065f185423edeed2662c47e17ab972f637668
--- /dev/null
+++ b/roles/network_plugin/weave/meta/main.yml
@@ -0,0 +1,3 @@
+---
+dependencies:
+ - role: network_plugin/cni
diff --git a/roles/network_plugin/weave/tasks/main.yml b/roles/network_plugin/weave/tasks/main.yml
index f2bd08c9bb09aaaf7ee8fe3ae3508bb55d95237c..f2509055a10a4f4da1e5ef85c0296beaf65b8347 100644
--- a/roles/network_plugin/weave/tasks/main.yml
+++ b/roles/network_plugin/weave/tasks/main.yml
@@ -1,20 +1,4 @@
---
-
-- name: Weave | Set cni directory permissions
- file:
- path: /opt/cni/bin
- state: directory
- owner: kube
- recurse: true
- mode: 0755
-
-- name: Weave | Copy cni plugins
- unarchive:
- src: "{{ local_release_dir }}/cni-plugins-linux-{{ image_arch }}-{{ cni_version }}.tgz"
- dest: "/opt/cni/bin"
- mode: 0755
- remote_src: yes
-
- name: Weave | Create manifest
template:
src: weave-net.yml.j2