- Jan 11, 2021
-
-
Etienne Champetier authored
no_proxy is a pain to get right, and having proxy variables present causes issues (k8s components get proxy configuration after upgrade, see #7100) It's better to only configure what require proxy: - the runtime (containerd/docker/crio) - the package manager + apt_key - the download tasks Tested with the following clusters - 4 CentOS 8 nodes - 1 Ubuntu 20.04 node Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
Gregor Krmelj authored
* update containerd documentation with etcd change * update conterind docs
-
Cristian Klein authored
In some environments, it might not be possible to ping the IP address of the nodes, e.g., because ICMP echo is blocked. This commit allows kubespray to be configured to disable the ping check, while performing all other checks.
-
Gregor Krmelj authored
This solves the error "Service is in unknown state" when creating a new Kubernetes installation. See: https://github.com/ansible/ansible/issues/71528
-
- Jan 10, 2021
-
-
Igor Vuk authored
-
- Jan 09, 2021
-
-
Etienne Champetier authored
TASK [network_plugin/calico : Calico | Configure calico network pool] ********** task path: /builds/kargo-ci/kubernetes-sigs-kubespray/roles/network_plugin/calico/tasks/install.yml:138 Friday 08 January 2021 17:10:12 +0000 (0:00:01.521) 0:11:36.885 ******** [WARNING]: The value {'kind': 'IPPool', 'apiVersion': 'projectcalico.org/v3', 'metadata': {'name': 'default-pool'}, 'spec': {'blockSize': 24, 'cidr': '10.233.64.0/18', 'ipipMode': 'Always', 'vxlanMode': 'Never', 'natOutgoing': True}} (type dict) in a string field was converted to "{'kind': 'IPPool', 'apiVersion': 'projectcalico.org/v3', 'metadata': {'name': 'default-pool'}, 'spec': {'blockSize': 24, 'cidr': '10.233.64.0/18', 'ipipMode': 'Always', 'vxlanMode': 'Never', 'natOutgoing': True}}" (type string). If this does not look like what you expect, quote the entire value to ensure it does not change. Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
- Jan 08, 2021
-
-
Florian Ruynat authored
-
holmesb authored
Signed-off-by: Brendan Holmes <5072156+holmesb@users.noreply.github.com>
-
- Jan 07, 2021
-
-
Etienne Champetier authored
* Improve how we set 'proxy=' in yum.conf or dnf.conf Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com> * Fixup spaces in no_proxy Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com> * Add svc,svc.{{ dns_domain }} to no_proxy Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
Etienne Champetier authored
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
Kenichi Omichi authored
This fixes the following failures: ./contrib/offline/README.md:14:1 MD014/commands-show-output Dollar signs used before commands without showing output [Context: "$ ./manage-offline-container-i..."] ./contrib/offline/README.md:20:1 MD014/commands-show-output Dollar signs used before commands without showing output [Context: "$ ./manage-offline-container-i..."]
-
- Jan 06, 2021
-
-
Florian Ruynat authored
-
Florian Ruynat authored
-
Kenichi Omichi authored
One challenge of offline deployment was how to collect necessary container images as a preparation. This adds a script to solve it.
-
flix444 authored
Valuating conditional (need_https_proxy.rc != 0) fail if http_proxy set and skip_http_proxy_on_os_packages is true (#7078) * Remove because of empty need_http_proxy.rc if http/https_proxy and skip_http_proxy_on_os_packages=true is set * Modify sample for debian and centos skip_http_proxy * Modify sample for debian and centos skip_http_proxy
-
- Jan 05, 2021
-
-
Florian Ruynat authored
-
Etienne Champetier authored
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
- Jan 04, 2021
-
-
Etienne Champetier authored
This fixes 1945499e Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
Etienne Champetier authored
All packages have proper dependencies in latest versions Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
Etienne Champetier authored
If some settings were changed from the default but not commited into an inventory repo, we risk breaking the cluster / cause downtime, so add some extra checks Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
- Dec 30, 2020
-
-
seowon authored
-
Kenichi Omichi authored
This fixes markdownlint failures under roles/
-
- Dec 25, 2020
-
-
Kenichi Omichi authored
This fixes markdown failures on contrib/terraform.
-
- Dec 24, 2020
-
-
Fredrik Liv authored
* Added gcp terraform support * Added http/https firewall rule * Ignoring lifecycle changes for attached disks on the google_compute_instance
-
Etienne Champetier authored
Upgrading docker / containerd without adapting the configuration might break the node, so disable docker-ce repo by default. We are already using dpkg hold for Debian. All containerd.io packages provide /usr/bin/runc, so no need to check yum_conf was never used for containerd module_hotfixes should not be needed with the EL8 repo Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
- Dec 23, 2020
-
-
Florian Ruynat authored
-
Teo Klestrup Röijezon authored
See https://github.com/projectcalico/calico/issues/3271 Otherwise Calico can get into a fight with NM about who "owns" the vxlan.calico interface, breaking all pod traffic.
-
Cristian Klein authored
* [terraform/aws] Fix Terraform >=0.13 warnings Terraform >=0.13 gives the following warning: ``` Warning: Interpolation-only expressions are deprecated ``` The fix was tested as follows: ``` rm -rf .terraform && terraform0.12.26 init && terraform0.12.26 validate rm -rf .terraform && terraform0.13.5 init && terraform0.13.5 validate rm -rf .terraform && terraform0.14.3 init && terraform0.14.3 validate ``` which gave no errors nor warnings. * [terraform/openstack] Fixes for Terraform >=0.13 Terraform >=0.13 gives the following error: ``` Error: Failed to install providers Could not find required providers, but found possible alternatives: hashicorp/openstack -> terraform-provider-openstack/openstack ``` This patch fixes these errors. This fix was tested as follows: ``` rm -rf .terraform && terraform0.12.26 init && terraform0.12.26 validate rm -rf .terraform && terraform0.13.5 init && terraform0.13.5 validate rm -rf .terraform && terraform0.14.3 init && terraform0.14.3 validate ``` which gave no errors nor warnings for Terraform 0.13.5 and Terraform 0.14.3. Unfortunately, 0.12.x gives a harmless warning, but with 0.14.3 out the door, I guess we need to move on. * [terraform/packet] Fixes for Terraform >=0.13 This fix was tested as follows: ``` export PACKET_AUTH_TOKEN=blah-blah rm -rf .terraform && terraform0.12.26 init && terraform0.12.26 validate rm -rf .terraform && terraform0.13.5 init && terraform0.13.5 validate rm -rf .terraform && terraform0.14.3 init && terraform0.14.3 validate ``` Errors are gone, but warnings still remain. It is impossible to please all three versions of Terraform. * Add tests for Terraform >=0.13
-
marcosfsch authored
* Fedora CoreOS: Fix for ethtool pre-installed Fix error in rpm-ostree when ethtool is already insatlled (FCOS >= 32.20201104.3.0) * Fedora CoreOS: Fix connection lost Fedora CoreOS: Ignore connection lost due to reboot and continues the playbook
-
Kenichi Omichi authored
This fixes markdownlint failures under contrib/network-storage and contrib/vault.
-
- Dec 22, 2020
-
-
Kenichi Omichi authored
Now markdownlint covers ./README.md and md files under ./docs only. However we have a lot of md files under different directories also. This enables markdownlint for other md files also.
-
- Dec 21, 2020
-
-
Florian Ruynat authored
-
Sergey authored
* download run once feature for CRI-O * fix typo * fix test
-
Etienne Champetier authored
We are currently setting the IP variable to hostIP, Before https://github.com/projectcalico/node/pull/593 (not yet released) Calico interpret that as hostIP/32 Using 'can-reach' we get the future behavior This fixes vxlan and IPIP CrossSubnet modes Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
-
- Dec 20, 2020
-
-
Florent Monbillard authored
-
- Dec 19, 2020
-
-
François Travais authored
Signed-off-by: François Travais <francois@travais.fr>
-
Kenichi Omichi authored
Just after creating a namespace, the corresponding token could not be created and sometimes the pod creation might be failed. This adds check of the token in the new namespace to make this test case stable.
-
Florent Monbillard authored
* SHAs for 1.19.6, 1.18.14, 1.18.13, 1.17.16 and 1.17.15 * Fix etcd version in README * Bump kube_version to 1.19.6
-
- Dec 18, 2020
-
-
Noam authored
-
Dmitry Chusovitin authored
-