Commits · 803d52ffceb030eac0ad878cc509efa9a602804f · Mirror / Kubespray

Sep 04, 2020
- kubernetes: remove unused variables (#6601) · 803d52ff
  Hans Feldt authored Sep 04, 2020
  
  803d52ff
- Update cert manager to 0.16.1 (#6600) · fc61f8d5
  tasekida authored Sep 04, 2020
```
* Update cert manager to 0.16.1

* Update cert manager to 0.16.1

Co-authored-by: Barry Melbourne <9964974+bmelbourne@users.noreply.github.com>
```
  fc61f8d5
- Add selectable dns policy for kube-router (#6586) · 0553814b
  Maxim Pogozhiy authored Sep 04, 2020
  
  0553814b
Sep 03, 2020

Add protectKernelDefaults option (default true) to kubelet config file (#6611) · f1566cb8
Florian Ruynat authored Sep 03, 2020

f1566cb8

Rotate kubelet server certificate. (#6453) · c1ba8e1b

Lovro Seder authored Sep 03, 2020

* Rotate kubelet server certificate.

* CI test kubelet server cert rotation

* Approve kubelet serving certificates in tests.

c1ba8e1b

Add snapshot-controller for CSI drivers and snapshot CRDs, add a default... · 2ff7ab8d

Hugo Blom authored Sep 03, 2020

Add snapshot-controller for CSI drivers and snapshot CRDs, add a default volumesnapshotclass when running cinder CSI (#6537)

* add snapshot-controller and v1beta1 snapshot api

* fix typo

* udpate manifest to v1beta1

* update

* update manifests

* fix spelling

* wait until crd is applied

* fix missing info in kube module

* revert snapshotclass

* add snapshot crds before applying the csi driver

* add crds, missed them in last commit

* use pull policy from kubespray

2ff7ab8d

Calico: update crds to v1 and cr (#6360) · 93698a8f

Hans Feldt authored Sep 03, 2020

* Update CustomResourceDefinition for kubecontrollersconfigurations.crd.projectcalico.org to v1
* Align ClusterRole for kube-controllers with upstream (calico)

93698a8f

Fix E306 in roles/network_plugin (#6516) · 6245587d
Maxime Guyot authored Sep 03, 2020
```
Signed-off-by: Miouge1 <maxime@root314.com>
```
6245587d

Sep 01, 2020
- Check node_ip is defined when removing etcd node (#6603) · 2faf53b0
  Florian Ruynat authored Sep 01, 2020
  
  2faf53b0
- Use crictl 1.19.0 for k8s 1.19.x (#6598) · e0b17877
  Florian Ruynat authored Sep 01, 2020
  
  e0b17877
Aug 31, 2020
- Update cni plugins with minor fix (#6592) · 9849dba5
  Florian Ruynat authored Aug 31, 2020
  
  9849dba5
- Docker: Set Cgroup driver by default to systemd (#6563) · 03c9c091
  Barry Melbourne authored Aug 31, 2020
```
* Set Docker Cgroup driver to systemd

* Add docker_cgroup_driver in Docker defaults
```
  03c9c091
- Add support for openstack application credentials (#6534) · 5a8b68a4
  Marc-Antoine authored Aug 31, 2020
```
* Add support for openstack application credentials

* Add some lines for readability

* Update external_openstack_tenant_id check

Do not check external_openstack_tenant_id when application credentials are defined

* Add check for external_openstack_domain_id

* Fix typo
```
  5a8b68a4
- Fix Ansible-lint E303 (#6409) · 34d88ea6
  Maxime Guyot authored Aug 31, 2020
  
  34d88ea6
- Update nginx ingress to 0.35.0 (#6599) · 0665b45e
  Florian Ruynat authored Aug 31, 2020
  
  0665b45e
- Fix E306 in roles/etcd (#6515) · 648fcf3a
  Maxime Guyot authored Aug 31, 2020
  
  648fcf3a
Aug 28, 2020
- Remove support for CoreOS Container Linux (#6576) · 058438a2
  Barry Melbourne authored Aug 28, 2020
  
  058438a2
- Fix E306 in other roles (#6517) · 6e938a31
  Maxime Guyot authored Aug 28, 2020
  
  6e938a31
Aug 27, 2020
- Update nginx ingress to 0.34.1 (#6571) · 2f93d62a
  Florian Ruynat authored Aug 27, 2020
  
  2f93d62a
- Add Kubernetes 1.19 hashes (#6593) · 8ba3d7ec
  Florian Ruynat authored Aug 27, 2020
  
  8ba3d7ec
- cri-o: add variable to configure unsecure pull (#6568) · 9e2d2827
  Hans Feldt authored Aug 27, 2020
```
By default do not allow "unqualified" (without a registry) images
because it is considered unsecure and subject to mitm attacks.

To enable insecure pull configure for example:

crio_registries:
  - "docker.io"
  - "quay.io"
```
  9e2d2827
- etcd should not fail when adding an already existing member (#6587) · 706c7cb4
  Florian Ruynat authored Aug 27, 2020
  
  706c7cb4
- Remove ethtool workaround, issue is now fixed (#6579) · 5884eeb6
  Florian Ruynat authored Aug 27, 2020
  
  5884eeb6
- Update bunch of dependencies with minor fixes (#6570) · e7ee19bd
  Florian Ruynat authored Aug 27, 2020
  
  e7ee19bd
- make it possible to open additional ports on master nodes (#6547) · 2f8fc921
  Hugo Blom authored Aug 27, 2020
  
  2f8fc921
- Deviceroutesourceaddress (#6508) · f59d3fc4
  nic0las authored Aug 27, 2020
```
* add FELIX_DEVICEROUTESOURCEADDRESS calico option

* add calico_use_default_route_src_ipaddr option 

add calico_use_default_route_src_ipaddr option to use FELIX_DEVICEROUTESOURCEADDRESS calico option

* Update k8s-net-calico.yml
```
  f59d3fc4
- Fix Ansible Lint warnings (No such file or directory) (#6581) · 8e2bae0f
  Barry Melbourne authored Aug 27, 2020
  
  8e2bae0f
- Add cilium hubble server in config (#6575) · e6dae03a
  Arthur Outhenin-Chalandre authored Aug 27, 2020
```
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
```
  e6dae03a
- Improve metallb template for bgp peers (#6574) · 2f2ed116
  Arthur Outhenin-Chalandre authored Aug 27, 2020
```
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
```
  2f2ed116
- update the ovn4nfv-k8s-plugin image version to v1.1.0 (#6531) · e91c6a7b
  Kuralamudhan Ramakrishnan authored Aug 26, 2020
```
Signed-off-by: Kuralamudhan Ramakrishnan <kuralamudhan.ramakrishnan@intel.com>
```
  e91c6a7b
Aug 26, 2020
- Rollback coredns, should not have been updated before 1.19 (#6573) · 1ff95e85
  Florian Ruynat authored Aug 26, 2020
  
  1ff95e85
Aug 24, 2020
- Allow webhook authorization (#6502) · 36924b63
  Sulochan Acharya authored Aug 24, 2020
  
  36924b63
Aug 21, 2020
- Add proxy_env calculation to reset.yml (#6558) · 0c80d3d9
  Florian Ruynat authored Aug 21, 2020
  
  0c80d3d9
- Use proper openssl command to differentiate between host and ip in API certificate check (#6392) · 411510cb
  jeanfabrice authored Aug 21, 2020
```
* Use proper openssl command to differentiate between host and ip in current certificate check

* fixup! Use proper openssl command to differentiate between host and ip in current certificate check
```
  411510cb
- Add timeout to Get current version of calico cluster version, again (#6493) · 6e2b8a57
  Florian Ruynat authored Aug 21, 2020
  
  6e2b8a57
- make pre-remove node draining a failable task (#6442) · ca66a96d
  Lars authored Aug 21, 2020
```
and add configuration to allow ungraceful removal
```
  ca66a96d
- Bump Openstack cloud controller image verison to 1.18.2 (#6562) · 0c09ec5d
  Marc-Antoine authored Aug 21, 2020
  
  0c09ec5d
- #6552 Update extras_rh_repo_base_url (#6556) · a8e2110b
  *=0=1=4=* authored Aug 21, 2020
  
  a8e2110b
- Use proper pypy download url in bootstrap script (#6555) · 250541d2
  Christian Strack authored Aug 21, 2020
```
The bootstrap-os role uses a bootstrap script to provision a
python interpreter on flatcar and container os hosts. As the
pypy project switched to another hoster, the download url changed.

If applied this will use the new proper pypy download url in bootstrap script
```
  250541d2
- Update k8s hashes and set default version to 1.18.8 (#6532) · 142b9e1e
  Florian Ruynat authored Aug 21, 2020
  
  142b9e1e