Commits · 6e938a310671a893933206d4f41c38150d5e5aa0 · Mirror / Kubespray

Aug 28, 2020
- Fix E306 in other roles (#6517) · 6e938a31
  Maxime Guyot authored Aug 28, 2020
  
  6e938a31
Aug 27, 2020
- Update nginx ingress to 0.34.1 (#6571) · 2f93d62a
  Florian Ruynat authored Aug 27, 2020
  
  2f93d62a
- Add Kubernetes 1.19 hashes (#6593) · 8ba3d7ec
  Florian Ruynat authored Aug 27, 2020
  
  8ba3d7ec
- cri-o: add variable to configure unsecure pull (#6568) · 9e2d2827
  Hans Feldt authored Aug 27, 2020
```
By default do not allow "unqualified" (without a registry) images
because it is considered unsecure and subject to mitm attacks.

To enable insecure pull configure for example:

crio_registries:
  - "docker.io"
  - "quay.io"
```
  9e2d2827
- etcd should not fail when adding an already existing member (#6587) · 706c7cb4
  Florian Ruynat authored Aug 27, 2020
  
  706c7cb4
- Update bunch of dependencies with minor fixes (#6570) · e7ee19bd
  Florian Ruynat authored Aug 27, 2020
  
  e7ee19bd
- Deviceroutesourceaddress (#6508) · f59d3fc4
  nic0las authored Aug 27, 2020
```
* add FELIX_DEVICEROUTESOURCEADDRESS calico option

* add calico_use_default_route_src_ipaddr option 

add calico_use_default_route_src_ipaddr option to use FELIX_DEVICEROUTESOURCEADDRESS calico option

* Update k8s-net-calico.yml
```
  f59d3fc4
- Fix Ansible Lint warnings (No such file or directory) (#6581) · 8e2bae0f
  Barry Melbourne authored Aug 27, 2020
  
  8e2bae0f
- Add cilium hubble server in config (#6575) · e6dae03a
  Arthur Outhenin-Chalandre authored Aug 27, 2020
```
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
```
  e6dae03a
- Improve metallb template for bgp peers (#6574) · 2f2ed116
  Arthur Outhenin-Chalandre authored Aug 27, 2020
```
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
```
  2f2ed116
- update the ovn4nfv-k8s-plugin image version to v1.1.0 (#6531) · e91c6a7b
  Kuralamudhan Ramakrishnan authored Aug 26, 2020
```
Signed-off-by: Kuralamudhan Ramakrishnan <kuralamudhan.ramakrishnan@intel.com>
```
  e91c6a7b
Aug 26, 2020
- Rollback coredns, should not have been updated before 1.19 (#6573) · 1ff95e85
  Florian Ruynat authored Aug 26, 2020
  
  1ff95e85
Aug 24, 2020
- Allow webhook authorization (#6502) · 36924b63
  Sulochan Acharya authored Aug 24, 2020
  
  36924b63
Aug 21, 2020
- Use proper openssl command to differentiate between host and ip in API certificate check (#6392) · 411510cb
  jeanfabrice authored Aug 21, 2020
```
* Use proper openssl command to differentiate between host and ip in current certificate check

* fixup! Use proper openssl command to differentiate between host and ip in current certificate check
```
  411510cb
- Add timeout to Get current version of calico cluster version, again (#6493) · 6e2b8a57
  Florian Ruynat authored Aug 21, 2020
  
  6e2b8a57
- make pre-remove node draining a failable task (#6442) · ca66a96d
  Lars authored Aug 21, 2020
```
and add configuration to allow ungraceful removal
```
  ca66a96d
- Bump Openstack cloud controller image verison to 1.18.2 (#6562) · 0c09ec5d
  Marc-Antoine authored Aug 21, 2020
  
  0c09ec5d
- #6552 Update extras_rh_repo_base_url (#6556) · a8e2110b
  *=0=1=4=* authored Aug 21, 2020
  
  a8e2110b
- Use proper pypy download url in bootstrap script (#6555) · 250541d2
  Christian Strack authored Aug 21, 2020
```
The bootstrap-os role uses a bootstrap script to provision a
python interpreter on flatcar and container os hosts. As the
pypy project switched to another hoster, the download url changed.

If applied this will use the new proper pypy download url in bootstrap script
```
  250541d2
- Update k8s hashes and set default version to 1.18.8 (#6532) · 142b9e1e
  Florian Ruynat authored Aug 21, 2020
  
  142b9e1e
Aug 20, 2020
- Fix setting node label if kube_override_hostname is defined (#6557) · 91ae87fa
  Michal Petko authored Aug 20, 2020
  
  91ae87fa
- Update coredns to 1.7.0 (#6538) · d6456d13
  tasekida authored Aug 20, 2020
  
  d6456d13
- Update weave to 2.7.0 + minor update to Cilium (#6501) · 98f74853
  Florian Ruynat authored Aug 20, 2020
  
  98f74853
- fix scale playbook (#6482) · a42d8114
  Samuel Liu authored Aug 20, 2020
  
  a42d8114
- Fix cert-manager E305 ansible-lint error (#6549) · bf6fdce3
  Barry Melbourne authored Aug 20, 2020
  
  bf6fdce3
- Edited pre-upgrade task to uncordon a node failing to drain (#6546) · fa378f09
  Bernard Landon authored Aug 20, 2020
  
  fa378f09
Aug 18, 2020
- Update apiserver-audit-policy.yaml.j2 (#6526) · d8a749fd
  holmesb authored Aug 18, 2020
  
  d8a749fd
- Remove unused variable (#6522) · 78ceef6b
  Florian Ruynat authored Aug 18, 2020
  
  78ceef6b
- Add new cilium options for native routing (#6519) · ca8e59fa
  Arthur Outhenin-Chalandre authored Aug 18, 2020
```
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
```
  ca8e59fa
- Fixed Kubespray container-engine/docker role to populate docker.service (#6518) · b0210567
  Bernard Landon authored Aug 18, 2020
  
  b0210567
- Fix cilium_deploy_additionally with kubeadm etcd (#6514) · 33ec1329
  Arthur Outhenin-Chalandre authored Aug 18, 2020
```
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
```
  33ec1329
- improve Cilium metrics support (#6513) · bedb411d
  Arthur Outhenin-Chalandre authored Aug 18, 2020
```
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
```
  bedb411d
Aug 13, 2020
- tlsminversion and tlsciphersuites kubelet (#6490) · ef3e9880
  Erwan Miran authored Aug 13, 2020
  
  ef3e9880
Aug 06, 2020

Fix cilium strict kube proxy replacement in HA (#6473) · 35682b52

Arthur Outhenin-Chalandre authored Aug 06, 2020



* Update the cilium svc proxy test to HA mode

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Fix cilium strict kube-proxy in HA

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Add a single global endpoint variable

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Add cilium docs about kube-proxy replacement

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

* Fix issues in docs

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>

35682b52

Upgrade JetStack Cert-Manager to v0.15.2 (#6414) · 9cc70e9e
Barry Melbourne authored Aug 06, 2020
```
* Upgrade JetStack Cert-Manager to v0.15.2

* Add README.md table of contents
```
9cc70e9e

Aug 05, 2020
- Fix E306 in roles/kubernetes (#6500) · fc23f37a
  Maxime Guyot authored Aug 05, 2020
  
  fc23f37a
- Allows tls verify skip on webhook auth url (#6472) · bfe14380
  Sulochan Acharya authored Aug 05, 2020
  
  bfe14380
- Option for MetalLB to talk BGP (#6383) · e72dbf3d
  Mike Williams authored Aug 05, 2020
```
* Option for MetalLB to talk BGP

* Check for BGP peers when metallb_protocol is bgp

* README clarification

* Commented values as documentation only in the sample inventory

* layer 2 or BGP, not both
```
  e72dbf3d
Aug 04, 2020
- Fix Flexvolume mount in Openstack Controller (#6480) · cc70200a
  bozzo authored Aug 04, 2020
  
  cc70200a
- Create a PodDisruptionBudget for the Cinder CSI controllerplugin (#6385) · f3c17361
  Steven Reitsma authored Aug 04, 2020
  
  f3c17361