Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • v2.27.0
  • v2.25.1
  • v2.24.3
  • v2.26.0
  • v2.24.2
  • v2.25.0
  • v2.24.1
  • v2.22.2
  • v2.23.3
  • v2.24.0
  • v2.23.2
  • v2.23.1
  • v2.23.0
  • v2.22.1
  • v2.22.0
  • v2.21.0
  • v2.20.0
  • v2.19.1
  • v2.18.2
  • v2.19.0
21 results
Search by author
  • Any Author
  • Дмитрий Сафронов Дмитрий Сафронов zimniy
1 author
  1. Dec 18, 2023
  3. Dec 12, 2023
    • jandres - moscardo's avatar
      New PR default node selector (#10607) · cb848fa7
      jandres - moscardo authored
      Unverified
      cb848fa7
    • Max Gautier's avatar
      Disable podCIDR allocation from control-plane when using calico (#10639) · 8abf49ae
      Max Gautier authored 
      * Disable control plane allocating podCIDR for nodes when using calico

Calico does not use the .spec.podCIDR field for its IP address
management.
Furthermore, it can false positives from the kube controller manager if
kube_network_node_prefix and calico_pool_blocksize are unaligned, which
is the case with the default shipped by kubespray.

If the subnets obtained from using kube_network_node_prefix are bigger,
this would result at some point in the control plane thinking it does
not have subnets left for a new node, while calico will work without
problems.

Explicitely set a default value of false for calico_ipam_host_local to
facilitate its use in templates.

* Don't default to kube_network_node_prefix for calico_pool_blocksize

They have different semantics: kube_network_node_prefix is intended to
be the size of the subnet for all pods on a node, while there can be
more than on calico block of the specified size (they are allocated on
demand).

Besides, this commit does not actually change anything, because the
current code is buggy: we don't ever default to
kube_network_node_prefix, since the variable is defined in the role
defaults.
      Unverified
      8abf49ae
    • Max Gautier's avatar
      Revert "Update etcd-servers for apiserver (#8253)" (#10652) · 81a3f81a
      Max Gautier authored 
      This reverts commit ee0f1e9d.

Avoid restarting all api servers at once by changing their config.
      Unverified
      81a3f81a
  5. Nov 27, 2023
  7. Nov 17, 2023
    • Max Gautier's avatar
      Validate systemd unit files (#10597) · 0d4f57aa
      Max Gautier authored 
      * Validate systemd unit files

This ensure that we fail early if we have a bad systemd unit file
(syntax error, using a version not available in the local version, etc)

* Hack to check systemd version for service files validation

factory-reset.target was introduced in system 250, same version as the
aliasing feature we need for verifying systemd services with ansible.
So we only actually executes the validation if that target is present.

This is an horrible hack which should be reverted as soon as we drop
support for distributions with systemd<250.
      Unverified
      0d4f57aa
  9. Nov 08, 2023
    • Max Gautier's avatar
      Move control plane certs renewal "spread out" into the systemd timer (#10596) · b3f6d051
      Max Gautier authored 
      * Use RandomizedDelaySec to spread out control certificates renewal plane

If the number of control plane node is superior to 6, using (index * 10
minutes) will fail (03:60:00 is not a valid timestamp).

Compared to just fixing the jinja expression (to use a modulo for
example), this should avoid having two control planes certificates
update node being triggered at the same time.

* Make k8s-certs-renew.timer Persistent

If the control plane happens to be offline during the scheduled
certificates renewal (node failure or anything like that), we still want
the renewal to happen.
      Unverified
      b3f6d051
    • Max Gautier's avatar
      Refactor "multi" handlers to use listen (#10542) · 8ebeb88e
      Max Gautier authored 
      * containerd: refactor handlers to use 'listen'

* cri-dockerd: refactor handlers to use 'listen'

* cri-o: refactor handlers to use 'listen'

* docker: refactor handlers to use 'listen'

* etcd: refactor handlers to use 'listen'

* control-plane: refactor handlers to use 'listen'

* kubeadm: refactor handlers to use 'listen'

* node: refactor handlers to use 'listen'

* preinstall: refactor handlers to use 'listen'

* calico: refactor handlers to use 'listen'

* kube-router: refactor handlers to use 'listen'

* macvlan: refactor handlers to use 'listen'
      Unverified
      8ebeb88e
  11. Oct 30, 2023
  13. Oct 17, 2023
  15. Sep 29, 2023
  17. Sep 21, 2023
  19. Aug 23, 2023
  21. Aug 10, 2023
  23. Aug 08, 2023
  25. Jul 26, 2023
  27. Jul 05, 2023
  29. Jun 30, 2023
  31. Jun 26, 2023
  33. Jun 13, 2023
  35. Jun 12, 2023
  37. Apr 18, 2023
  39. Apr 11, 2023
  41. Mar 29, 2023
  43. Mar 27, 2023
  45. Mar 10, 2023
  47. Mar 03, 2023
  49. Feb 06, 2023
  51. Dec 28, 2022
  53. Dec 27, 2022
  55. Dec 20, 2022
  57. Dec 15, 2022
  59. Dec 05, 2022
  61. Oct 26, 2022
  63. Oct 14, 2022
  65. Oct 06, 2022
  67. Sep 29, 2022
  69. Aug 30, 2022