- Mar 27, 2023
-
-
Luke Simmons authored
-
- Sep 09, 2022
-
-
Samuel Liu authored
* WIP: sometimes,we not run etcd * fix ansible lint * like calico(kdd) cni, no need run etcd
-
- Feb 26, 2022
-
-
Mac Chaffee authored
Signed-off-by:
Mac Chaffee <me@macchaffee.com>
-
- Feb 22, 2022
-
-
Necatican Yıldırım authored
* Add kubeadm option to etcd_deployment_type to replace the etcd_kubeadm_enabled variable Signed-off-by:
necatican <necaticanyildirim@gmail.com> * Add etcd kubeadm deployment documentation Signed-off-by:
necatican <necaticanyildirim@gmail.com> * Refactor warning for the deprecated 'etcd_kubeadm_enabled' variable Signed-off-by:
necatican <necaticanyildirim@gmail.com>
-
- Oct 12, 2021
-
-
Max Gautier authored
If the etcd cluster is separate and the etcd_deployment_type is "host", there is no need for a container engine on the etcd nodes Do not rely on a 'default(true)' filter, but define a proper default in kubespray-defaults depending on etcd deployment method and if internal or external etcd is used
-
- Jun 16, 2021
-
-
Samuel Liu authored
-
- May 26, 2021
-
-
efrikin authored
-
- Apr 29, 2021
-
-
Cristian Calin authored
* rename ansible groups to use _ instead of - k8s-cluster -> k8s_cluster k8s-node -> k8s_node calico-rr -> calico_rr no-floating -> no_floating Note: kube-node,k8s-cluster groups in upgrade CI need clean-up after v2.16 is tagged * ensure old groups are mapped to the new ones
-
- Mar 24, 2021
-
-
Kenichi Omichi authored
This replaces kube-master with kube_control_plane because of [1]: The Kubernetes project is moving away from wording that is considered offensive. A new working group WG Naming was created to track this work, and the word "master" was declared as offensive. A proposal was formalized for replacing the word "master" with "control plane". This means it should be removed from source code, documentation, and user-facing configuration from Kubernetes and its sub-projects. NOTE: The reason why this changes it to kube_control_plane not kube-control-plane is for valid group names on ansible. [1]: https://github.com/kubernetes/enhancements/blob/master/keps/sig-cluster-lifecycle/kubeadm/2067-rename-master-label-taint/README.md#motivation
-
- Mar 05, 2021
-
-
Etienne Champetier authored
kubeadm never rotates sa.key/sa.pub, so there is no need to delete tokens/restart pods Signed-off-by:
Etienne Champetier <e.champetier@ateme.com>
-
- Feb 23, 2021
-
-
Etienne Champetier authored
Since a790935d all proxy users should be properly configured Now when you have *_PROXY vars in your environment it can leads to failure if NO_PROXY is not correct, or to persistent configuration changes as seen with kubeadm in 1c5391dd Instead of playing constant whack-a-bug, inject empty *_PROXY vars everywhere at the play level, and override at the task level when needed Signed-off-by:
Etienne Champetier <e.champetier@ateme.com>
-
- Feb 01, 2021
-
-
Kenichi Omichi authored
This is a small step to replace "master" with "control-plane" in Kubespray project.
-
- Jan 11, 2021
-
-
Etienne Champetier authored
no_proxy is a pain to get right, and having proxy variables present causes issues (k8s components get proxy configuration after upgrade, see #7100) It's better to only configure what require proxy: - the runtime (containerd/docker/crio) - the package manager + apt_key - the download tasks Tested with the following clusters - 4 CentOS 8 nodes - 1 Ubuntu 20.04 node Signed-off-by:
Etienne Champetier <champetier.etienne@gmail.com>
-
- Jun 25, 2020
-
-
Hans Feldt authored
tags are not inherited for include_role therefore the change from include to import Co-authored-by:
Hans Feldt <hafe@users.noreply.github.com>
-
- Apr 24, 2020
-
-
Sergey authored
* add strategy mitogen_linear when installed mitogen * add small docs Rename playbook file The raw action executes as a regular Mitogen connection, which requires Python on the target, so add strategy: linear to bootstrap-os role playbook. * add mitogen to CI test fix typo * enable mitogen test on deploy-part1 tests change version from master to release download tar.gz archive * run all CI tests with mitogen * disable mitogen with upgrade CI tests * enable mitogen on CI tests via env vars * disable mitogen on CI test by default, enable on some different OS * disable mitogen CI test on centos8 (get error /usr/bin/python: No such file or directory)
-
- Apr 23, 2020
-
-
Sergey authored
* bump minimal ansible version to 2.8.0 * check ansible version in separate playbook
-
- Apr 18, 2020
-
-
Lovro Seder authored
* Gather just the necessary facts * Move fact gathering to separate playbook.
-
- Apr 08, 2020
-
-
Alexander Kross authored
* Fix chicken and egg problem with proxy_env not defined on the first envinronment usage. * Disable fact gathering for the first proxy_env evaluation. * Move proxy_env var set up from the role defaults to the root playbooks as fact.
-
- Feb 18, 2020
-
-
Ali Sanhaji authored
* External OpenStack Cloud Controller Manager implementation * Adding controller image tag * Minor fixes * Restructuring the external cloud controller to work with KubeADM
-
- Jan 20, 2020
-
-
jlacoline authored
-
- Dec 09, 2019
-
-
Sergey authored
* set varios node label via kubectl label command, not kubelet options * remove node_labels from KUBELET_ARGS
-
- Aug 08, 2019
-
-
Matthew Mosesohn authored
* Refactor calico-rr to run in k8s cluster with taint Change-Id: I75a3169ff5b36ce8302fc7ef1c32d3eb697b5afa * add preinstall checks * rework calico/rr role Change-Id: I2f0a7e6cb77cf91ad4a615923680760d2e5d9ca8 * add empty calico-rr group Change-Id: I006c0a60db9b72d02245bf8fdfabcf982144a5ad
-
- Jun 27, 2019
-
-
Matthew Mosesohn authored
Ansible will gather facts on the preinstall/download role automatically at the start of that play.
-
- Jun 20, 2019
-
-
Matthew Mosesohn authored
* Enable kubeadm etcd mode Uses cert commands from kubeadm experimental control plane to enable non-master nodes to obtain etcd certs. Related story: PROD-29434 Change-Id: Idafa1d223e5c6ceadf819b6f9c06adf4c4f74178 * Add validation checks and exclude calico kdd mode Change-Id: Ic234f5e71261d33191376e70d438f9f6d35f358c * Move etcd mode test to ubuntu flannel HA job Change-Id: I9af6fd80a1bbb1692ab10d6da095eb368f6bc732 * rename etcd_mode to etcd_kubeadm_enabled Change-Id: Ib196d6c8a52f48cae370b026f7687ff9ca69c172
-
- May 03, 2019
-
-
MarkusTeufelberger authored
-
- Apr 29, 2019
-
-
Matthew Mosesohn authored
* Run dns_late preinstall tasks on all k8s nodes Related issue: #4656 Change-Id: I63f8559ef1a497b7580ab084561e6603fe647834 * Fix ansible-lint Change-Id: Ia5b33fa63dbc36d8c3e9557ef3f2ea02af2325a5 * Fix recover_control_plane lint issues Change-Id: I16643a3193c11b6ba704e9698812cac7e4fd19a8
-
- Apr 24, 2019
-
-
MarkusTeufelberger authored
* Add README to bootstrap-os role * Rework bootstrap-os once more * Document workarounds for bugs/deficiencies in Ansible modules * Unify and document role variables * Remove installation of additional packages and repositories * Merge Ubuntu and Debian tasks * Remove pipelining setting from default playbooks * Fix OpenSUSE not running its required tasks
-
- Apr 17, 2019
-
-
Maxime Guyot authored
-
- Apr 09, 2019
-
- Apr 01, 2019
-
-
Matthew Mosesohn authored
Both kubedns and dnsmasq modes are long not maintained. We should run dns_late steps at the end because sshd makes DNS lookups during Ansible run and has 2s timeouts for each failed lookup trying to connect to coredns before it is ready.
-
- Feb 26, 2019
-
-
Gabor Lekeny authored
* fact gathering should run only once per node * eliminate ansible version check, it is at the beginning of each playbook
-
Andrey Zhelnin authored
-
- Jan 03, 2019
-
-
Chad Swenson authored
- Creates and defaults an ansible variable for every configuration option in the `kubeproxy.config.k8s.io/v1alpha1` type spec - Fixes vars that were orphaned by removing non-kubeadm - Fixes previously harcoded kubeadm values - Introduces a `main` directory for role default files per component (requires ansible 2.6.0+) - Split out just `kube-proxy.yml` in this first effort - Removes the kube-proxy server field patch task We should continue to pull out other components from `main.yml` into their own defaults files as I did here for `defaults/main/kube-proxy.yml`. I hope for and will need others to join me in this refactoring across the project until each component config template has a matching role defaults file, with shared defaults in `kubespray-defaults` or `downloads`
-
- Dec 06, 2018
-
-
Andreas Krüger authored
* Remove non-kubeadm deployment * More cleanup * More cleanup * More cleanup * More cleanup * Fix gitlab * Try stop gce first before absent to make the delete process work * More cleanup * Fix bug with checking if kubeadm has already run * Fix bug with checking if kubeadm has already run * More fixes * Fix test * fix * Fix gitlab checkout untill kubespray 2.8 is on quay * Fixed * Add upgrade path from non-kubeadm to kubeadm. Revert ssl path * Readd secret checking * Do gitlab checks from v2.7.0 test upgrade path to 2.8.0 * fix typo * Fix CI jobs to kubeadm again. Fix broken hyperkube path * Fix gitlab * Fix rotate tokens * More fixes * More fixes * Fix tokens
-
- Nov 29, 2018
-
-
Toni Ylenius authored
fact gathering causes errors when using become (-b) and there is no sudo access locally
-
- Nov 26, 2018
-
-
okamototk authored
This feature was removed by PR#3061. But change flag manage_docker to deploy_container_engine.
-
Rong Zhang authored
-
- Nov 16, 2018
-
-
Ryler Hockenbury authored
* Tag win_nodes roles with master * Dummy change
-
- Nov 10, 2018
-
-
Antoine Legrand authored
* Remove Vault * Remove reference to 'kargo' in the doc * change check order
-
- Nov 01, 2018
-
-
Matthew Mosesohn authored
When using resolvconf_mode host_resolvconf, there is an early DNS config stage where Kubernetes cluster DNS is not injected for host DNS intially. Later, the cluster DNS is enabled, but we do not need to run every task from the kubernetes/preinstall role.
-