External-Mirrors/kubespray
2
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kubespray.git synced 2026-01-10 15:32:09 -03:30
Code Issues Packages Projects Releases Wiki Activity
8,342 Commits 43 Branches 87 Tags
Commit Graph

5515 Commits

Author SHA1 Message Date
Max Gautier
490dece3bf
Cleanup assert after 2.28 (#12245) 
Users should have used 2.28 and adapted their inventories now.
 2025-05-21 20:28:35 -07:00
Ekko
6c5c45b328
Allow stopping ubuntu unattended-upgrades (#12174) 
Signed-off-by: Ekko Tu <lihai.tu@daocloud.io>
 2025-05-20 01:07:16 -07:00
ChengHao Yang
1266527014
Add cilium cli binary hash before 0.18.3 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:15 +08:00
ChengHao Yang
5e2e63ebe3
Make cilium dnsProxy transparent mode configure 
When Cilium is configured to replace kube-proxy, it automatically
enables dnsProxy, which can conflict with nodelocaldns.
 2025-05-19 08:48:15 +08:00
ChengHao Yang
db290ca686
Add cilium gateway api support 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:15 +08:00
ChengHao Yang
6619d98682
Add cilium hubble export dynamic content 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:15 +08:00
ChengHao Yang
b771d73fe0
Add cilium hubble export file max backups & size mb 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:15 +08:00
ChengHao Yang
65751e8193
Add cilium operator tolerations default values 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:15 +08:00
ChengHao Yang
4c16fc155f
Cilium values k8sServiceHost and k8sServicePort use auto 
Signed-off-by: ChengHao Yang
<17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:14 +08:00
ChengHao Yang
dcd3461bce
Cilium values use image variables 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:14 +08:00
ChengHao Yang
48f75c2c2b
Upgrade Cilium related images 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:14 +08:00
ChengHao Yang
a4b73c09a7
Upgrade cilium version to 1.17.3 
Signed-off-by: ChengHao Yang
<17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:14 +08:00
ChengHao Yang
86437730de
Use cilium-cli install Cilium 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:14 +08:00
ChengHao Yang
6fe64323db
Remove old cilium templates install 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:13 +08:00
ChengHao Yang
1e471d5eeb
Upgrade outdated cilium_min_version_required 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-05-19 08:48:11 +08:00
Max Gautier
3a2862ea19
Move checksums to kubespray_defaults/vars (#12234) 
The checksums are not a defaults and are not meant to be changed from
the inventories.

Furthermore, role defaults have a lower priority that hosts facts, which
technically means a rogue hosts could hijack the hashes for its
variables.
 2025-05-18 16:13:14 -07:00
ErmolenkoMaxim
46a0dc9a51
Add support for hubble-export-file-max-backups and max-size-mb variables (#12072) 
* feat(cilium): add configurable Hubble export log rotation parameters

- Adds support for `cilium_hubble_export_file_max_backups` and `cilium_hubble_export_file_max_size_mb`
- Applies values only if `cilium_hubble_export_file_path` is defined
- Default values are set in role defaults
- Cleans up template logic by removing unnecessary conditionals

* Fix indentation for hubble export settings

* Fix undefined variable issue with ipwrap in kubeconfig override that caused pre-commit errors

* Update main.yml

rollback
 2025-05-17 00:35:13 -07:00
Max Gautier
faae36086c
Patch versions updates (#12226) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-05-16 14:13:14 -07:00
ERIK
e4c0c427a3
improve NTP package conflict handling (#12212) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2025-05-16 03:55:14 -07:00
Antoine Legrand
5c07c6e6d3
Add option to [not] install coredns via Kubespray (#12218) 2025-05-16 03:23:13 -07:00
Takuya Murakami
c6dfe22a41
Improve logging of kubeadm init failure of first control plane node (#12216) 
Split retry task of 'kubeadm init' to show the failure log of
the first execution.
 2025-05-16 03:01:13 -07:00
Seena Fallah
ec85b7e2c9
download: respect enable_dns_autoscaler when enabling dnsautoscaler (#12217) 
dnsautoscaler should only be enabled when enable_dns_autoscaler is
set to true. without this, it could be enabled without any manifest
actually using it, which makes it a false signal.

Signed-off-by: Seena Fallah <seenafallah@gmail.com>
 2025-05-15 12:45:13 -07:00
Kubernetes Prow Robot
acd6872c80
Merge pull request #12219 from VannTen/test/ha_etcd_separate 
Fix broken workaround for separate etcd setup
 2025-05-15 12:39:14 -07:00
Max Gautier
22d3cf9c2b
Move 'pretend certificates' **after** cert distribution 
The link target will only exist after we distribute the certs on each node.
 2025-05-15 18:35:34 +02:00
Hyeonki Hong
2c3b6c9199
feat: add trigger to restart kube-apiserver when config files change (#12172) 
* feat: add trigger to restart kube-apiserver when config files change

* fix: remove not upgrade_cluster_setup condition

* refactor: streamline kube-apiserver restart notifications
 2025-05-15 06:51:14 -07:00
Max Gautier
a55932e1de
Patch versions updates (#12204) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-05-14 18:55:20 -07:00
Max Gautier
973bd2e520
Stop cleaning up containerd packages (#12213) 
The switch to not use system packages for containerd packages happened
multiples releases ago ; there should not be any up-to-date installation
of kubespray needing that cleanup.

Remove those steps and variables only used by them.
 2025-05-13 21:07:16 -07:00
Kubernetes Prow Robot
ea7331f5fc
Merge pull request #12211 from VannTen/cleanup/rename_remove_node 
rename-without-hypens: remove-node/pre-remove
 2025-05-13 17:13:16 -07:00
Kubernetes Prow Robot
df241800ce
Merge pull request #12203 from VannTen/cleanup/rename_bootstrap_os 
Rename bootstrap-os to bootstrap_os
 2025-05-13 05:03:16 -07:00
Cyclinder
8cc5694580
calico: update calico-kube-controller manifest (#12169) 2025-05-13 01:43:17 -07:00
Max Gautier
1d15baf405
Add compat and deprecation warning for boostrap-os 2025-05-13 09:39:59 +02:00
Max Gautier
47508d5c6e
Rename bootstrap-os to bootstrap_os 
Role names in ansible collections should not have hyphens.
 2025-05-13 09:39:54 +02:00
Max Gautier
2a1ae14275
Compat layer remove-node/pre-remove 2025-05-12 22:22:20 +02:00
Max Gautier
e361def9cd
Rename remove-node/pre-remove (no hypens for role in collection) 2025-05-12 22:19:50 +02:00
Max Gautier
fa6888df4c
kubernetes_audit: Remove redundant defaults filter (#12208) 2025-05-12 07:23:14 -07:00
felipe88alves
9bbd597e20
create cilium_operator_tolerations variable in group_var (#12200) 
- This enables ithe override of the tolerations for the cilium-operator deployment
 - default behaviour is to leave the toleration as is unless the var is set
 2025-05-12 03:25:15 -07:00
Cheolhui Kim
fceb1516b8
Update: add Cilium LB IP Pool configuration to support ranges (#12140) 2025-05-12 01:39:18 -07:00
Kubernetes Prow Robot
43e19ab281
Merge pull request #12202 from VannTen/cleanup/rename_kubespray_defaults 
Rename kubespray-defaults to kubespray_defaults
 2025-05-12 01:21:14 -07:00
Max Gautier
4052cd5237
Add compat and deprecation warning for kubespray-defaults 2025-05-12 09:46:07 +02:00
Kim Hyunyoung, Abel
e1be469995
fix: do not mount hubble-ui tls volume when cilium_hubble_tls_generate is false (#12143) 2025-05-11 20:27:14 -07:00
Max Gautier
7db2aa1cba
Rename kubespray-defaults to kubespray_defaults 
Role names in ansible collection should not contains hyphens.
 2025-05-10 10:04:37 +02:00
Kubernetes Prow Robot
0c8dfb8e43
Merge pull request #12185 from VannTen/cleanup/iproute_with_the_rest 
Move package installation to bootstrap-os
 2025-05-09 20:49:14 -07:00
Max Gautier
25e4fa17a8
Split kubespray-defaults (-> network_facts) 
kubespray-defaults currently does two things:
- records a number of default variable values (in particular values used
  in several places)
- gather and compose some complex network facts (in particular,
  `fallback_ip` and `no_proxy`

There is no actual reason to couple those two things, and it makes using
defaults more difficult (because computing the network facts is somewhat
expensive, we don't want to do it willy-nilly)

Split the two and adjust import paths as needed.
 2025-05-09 21:14:26 +02:00
Max Gautier
bb4b2af02e
Drop install of python-libselinux for RHEL family below 8 
RHEL 7 and derivates support has been removed from some time, clean up
of leftovers.
 2025-05-09 21:14:25 +02:00
ChengHao Yang
27e93ee9f6
Feat: Gateway API early installation (#12189) 
The Gateway API needs to be installed first if you want to use Cilium's
Gateway API functionality. The Gateway API is just CRD without any Pod,
Deployment, etc., so I think it can be brought forward to before the CNI
installation.

Signed-off-by: ChengHao Yang
 2025-05-09 09:47:14 -07:00
Chad Swenson
76707073c4
Fix indentation on AuthorizationConfiguration task (#12197) 2025-05-09 00:05:19 -07:00
ERIK
1c4b18b089
fix: arm64 checksums for youki and kata-containers (#12173) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2025-05-08 19:05:14 -07:00
Max Gautier
d6d87e9a83
Move cilium_deploy_additionnaly to kubespray-default (#12191) 
Instead of using default(false) all over the place, use
kubespray-defaults
 2025-05-07 05:05:17 -07:00
Max Gautier
fcc294600c
Workaround missing etcd certds on control plane node (#12181) 2025-05-05 01:05:57 -07:00
Max Gautier
a7d681abff
Install iputils with other packages 2025-05-04 21:22:49 +02:00