External-Mirrors/kubespray
2
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kubespray.git synced 2026-06-16 12:17:43 -02:30
Code Issues Packages Projects Releases Wiki Activity
8,838 Commits 57 Branches 90 Tags
e332b4ffbcdc3b8609b09bdfb60d71bbc87dd45f
Commit Graph

5817 Commits

Author SHA1 Message Date
Nikhil Kumar
e0add9ee0d Replace injected Ansible fact variables in container-engine role (#13296) 2026-06-16 08:51:24 +05:30
Wren Turkal
f2a7181f99 fix: make assert test for netaddr actually return a boolean (#13304) 
* fix: make assert test for netaddr actually return a boolean

The netaddr test returns a string when the netaddr is installed. This makes
Ansible 2.20 angry. Here's a fix to make sure the true case also returns a
boolean instead of a string.

* fix: more fixes for non-boolean conditions

The `cloud_provider` assertion change is a little more involved. The only two
allowed values are "" and "external". Let's just always check the assertion
instead of skipping it when it's the default value, which is "".

All the other changes should be fairly obvious.
 2026-06-14 13:56:32 +05:30
ChengHao Yang
3011e19ccd Patch versions updates (#13305) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-13 10:28:46 +05:30
longxiucai
a72ea49b2e Fix: use config version 4 for containerd 2.3+ (#13285) (#13286) 
Signed-off-by: longyuxiang <longyuxiang@kylinos.cn>
 2026-06-05 08:19:58 +05:30
Denis
bd21d04c4f Update dns-autoscaler.yml.j2 fix duplicate nodeSelector (#13290) 2026-06-04 12:17:48 +05:30
ujstor
7c8f928405 fix-absent-cni-kubeadm-join-control-planes (#13280) 2026-06-02 07:34:59 +05:30
Nikhil Kumar
2ffff07887 Replace injected Ansible fact variables in node and control-plane roles (#13240) 2026-06-02 07:34:51 +05:30
ChengHao Yang
8b234bf138 Patch versions updates (#13283) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-01 20:52:54 +05:30
Sumit Solanki
e914bd78c2 Bump containerd from 2.2.3 to 2.3.0 (#13265) 2026-05-28 14:56:55 +05:30
Zakhar Dvurechensky
9049703ce0 roles: rely on configured defaults (#13249) 
Signed-off-by: Zakhar Dvurechensky <72825626+Zakharden@users.noreply.github.com>
 2026-05-27 15:09:50 +05:30
Kubernetes Prow Robot
03ae25e410 Merge pull request #13269 from tico88612/fix/pre-commit 
Fixed pre-commit and pin Python Client version in pipeline
 2026-05-26 13:41:26 +05:30
ChengHao Yang
1b111e06b1 Fix kata-containers job name duplicated 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2026-05-25 20:50:38 +08:00
Ali Afsharzadeh
6107c6ab7c Align nginx worker_rlimit_nofile with containerd defaults (#13255) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2026-05-21 17:10:48 +05:30
Ali Afsharzadeh
7a62933b17 Update load balancer versions to Nginx 1.30.1 and Haproxy 3.2.19 (#13258) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2026-05-21 14:16:46 +05:30
Sumit Solanki
7fd29b5529 kube-vip: optional Prometheus metrics (default port 2112) (#13229) 
Add kube_vip_metrics_enabled and kube_vip_metrics_port; wire
prometheus_server and container port in the static pod manifest.
Default metrics port to 2112 to match kube-vip upstream. Document
and sample inventory updated.
 2026-05-19 11:15:02 +05:30
Ali Afsharzadeh
17f270325d Remove deprecated apiserver-count kubeadm config option (#13262) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2026-05-18 16:17:51 +05:30
Justin Lamp
8c3f6270f8 Add toggle to disable node subnet allocation (#13239) 
Signed-off-by: Justin Lamp <justin.lamp@netways.de>
 2026-05-16 11:34:34 +05:30
Ali Afsharzadeh
2ac815147b Upgrade cilium from 1.19.3 to 1.19.4 (#13256) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2026-05-14 18:04:28 +05:30
Nikhil Kumar
2ed677ce86 Replace injected Ansible fact variables with ansible_facts in preinstall role (#13232) 2026-05-14 16:08:30 +05:30
ChengHao Yang
22ce2f799f Patch versions updates (#13254) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-05-14 13:26:27 +05:30
Takuya Murakami
c1768dd21b cri-o: Bump cri-o to 1.36.0 for kubernetes 1.36 (#13244) 2026-05-11 19:15:51 +05:30
Justin Lamp
6bb1e2f290 Set http proxy environments for helm app installations (#13234) 
* Set http proxy environments for helm app installations

Signed-off-by: Justin Lamp <justin.lamp@netways.de>

* Change http_proxy env variables from legacy static entries to new proxy_env variable

Signed-off-by: Justin Lamp <justin.lamp@netways.de>

---------

Signed-off-by: Justin Lamp <justin.lamp@netways.de>
 2026-05-10 08:49:45 +05:30
ChengHao Yang
4cefd77639 Move failing youki to allow_failed and patch update (#13241) 
* Patch versions updates

* fix: failing blocker youki

https://github.com/youki-dev/youki/issues/3479

---------

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-05-08 18:43:20 +05:30
Sumit Solanki
e97333dbf8 fix: skip kube-proxy-only tasks when kube_proxy_remove is true (#13228) 
* fix: skip kube-proxy-only tasks when kube_proxy_remove is true

Signed-off-by: Sumit Solanki <sumit.solanki@ibm.com>

* refactor: use  where defaults already define the var

Signed-off-by: Sumit Solanki <sumit.solanki@ibm.com>

---------

Signed-off-by: Sumit Solanki <sumit.solanki@ibm.com>
 2026-05-07 18:31:20 +05:30
Ali Afsharzadeh
09e9c43570 Disable controller-manager allocate-node-cidrs for cilium cluster-pool ipam (#13148) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2026-05-06 15:26:22 +05:30
Takuya Murakami
28bdeb8583 [Kubernetes] Support Kubernetes v1.36.0 (#13219) 
- Support Kubernetes 1.36.0
- Bump coredns to 1.14.2
 2026-05-01 07:49:25 +05:30
Kay Yan
a254f5ea68 network_plugin/cilium: fail fast when Gateway API CRDs are incompatible (#13223) 
Cilium < 1.20 unconditionally registers a field indexer for TLSRoute
v1alpha2 when the Gateway API controller is enabled, but Gateway API
>= 1.5.0 ships TLSRoute v1alpha2 with served=false in the standard
channel. The result is cilium-operator CrashLoopBackOff with:

  no matches for kind "TLSRoute" in version "gateway.networking.k8s.io/v1alpha2"

The fix landed in Cilium 1.20 only and will not be backported.

Add a preflight assert that triggers only when all of the following
hold: cilium_gateway_api_enabled, gateway_api_enabled, cilium_version
< 1.20.0, gateway_api_version >= 1.5.0, and gateway_api_channel ==
"standard". Users hit by this combo get a clear error and two
workarounds (pin gateway_api_version to 1.4.1, or switch
gateway_api_channel to "experimental") instead of debugging a crash
loop after the fact.

Signed-off-by: Kay Yan <kay.yan@daocloud.io>
 2026-04-30 11:43:26 +05:30
Yang-Ming Lin
c3d4864e63 Refactor(defaults): centralize etcd defaults (#13161) 2026-04-28 07:54:48 +05:30
PangQingcheng
8c3ebff2b9 [kata-containers] Update configuration to support kata 3.4.0 (#13077) 
kata containers added create_container_timeout parameter.
If this parameter is missing, the new version of Kata cannot create containers properly and will encounter an error:  failed to create shim task: context deadline exceeded
 2026-04-22 13:03:54 +05:30
Srishti Jaiswal
dee8a18ccc bump- calico to v3.31.5 (#13196) 2026-04-21 20:21:53 +05:30
R. P. Taylor
9c953fffee Set fs.inotify.max_user_instances=8192 by default (#13075) 2026-04-21 19:01:54 +05:30
Karim Farid
e939d40ed9 bump(download): Flannel v0.27.3 → v0.28.4 (#13199) 
* bump(download): Flannel v0.27.3 → v0.28.4

* bump(download): Update flannel to v0.28.4
 2026-04-21 11:59:54 +05:30
Chad Swenson
f81842d0ed Implement structured authentication configuration for API server (#13035) 2026-04-21 08:25:52 +05:30
Karim Farid
19b73f4f83 Bump: CNI plugins to v1.9.1 (#13198) 
* bump(download): CNI plugins v1.8.0 → v1.9.1

* bump(download): update cni-plugins to v1.9.1
 2026-04-21 08:07:52 +05:30
Mohamed Omar Zaian
11a985dcd3 [runc] Add hashes for runc v1.4.2, and make it default (#13192) 2026-04-20 19:03:54 +05:30
Mohamed Omar Zaian
7b3486a13d [etcd] Add hashes for etcd v3.6.10, and make it default for k8s 1.35 (#13190) 2026-04-19 12:21:36 +05:30
Mohamed Omar Zaian
2e655d5e64 Upgrade metrics-server to v0.8.1 (#13189) 2026-04-17 17:53:05 +05:30
Mohamed Omar Zaian
d068ae5414 [Kubernetes] Update Kubernetes to v1.35.4 (#13193) 2026-04-17 17:49:05 +05:30
Kay Yan
d564e4e77d bump containerd from 2.2.1 to 2.2.3 (#13174) 
Also add checksums for newly released patch versions:
- containerd 2.2.2, 2.2.3
- containerd 2.1.7
- containerd 2.0.8
- containerd 1.7.31

Signed-off-by: Kay Yan <kay.yan@daocloud.io>
 2026-04-17 17:11:04 +05:30
Ali Afsharzadeh
9441a6b90d Upgrade cilium from 1.19.1 to 1.19.3 (#13187) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2026-04-17 16:09:03 +05:30
Kay Yan
817c0a6eda fix(cilium): wire cilium_enable_prometheus to Helm values template (#13142) 
The cilium_enable_prometheus variable was defined in defaults and
documented in sample inventory but never mapped to the Helm values
template, making it a no-op. Add the prometheus.enabled field to
values.yaml.j2 so that setting cilium_enable_prometheus: true
correctly enables Prometheus metrics on the Cilium agent.

Signed-off-by: Kay Yan <kay.yan@daocloud.io>
 2026-04-14 07:28:36 +05:30
Yang-Ming Lin
00a0479078 Refactor(defaults): centralize bootstrap_os defaults (#13155) 2026-04-09 08:35:38 +05:30
ahmed moghazy
f0c965f1ed fix: correct OCI CCM template filename in lookup (#13151) 2026-04-09 08:35:31 +05:30
Karim Farid
47bb0301e4 Fix undefined variable error for CiliumBGPAdvertisement labels (#13149) 2026-04-09 08:13:31 +05:30
Yang-Ming Lin
65352fef39 Fix Flatcar flaky CI by enabling apiserver wait after DNS handler (#13063) 
Remove the Flatcar/Fedora CoreOS exclusion from the wait handler
and unify the Flatcar-specific notify channel into the shared
"propagate resolvconf to k8s components" channel.
 2026-04-03 20:17:03 +05:30
labaq
6006fe4303 feat(checksums) add Gateway API 1.5.0 1.5.1 checksums (#13138) 2026-04-03 17:01:04 +05:30
ChengHao Yang
e0d4d892a3 Patch versions updates (#13143) 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2026-04-03 13:29:03 +05:30
ChengHao Yang
6850c731db Fix openeuler metalink url (#13144) 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2026-04-03 12:59:04 +05:30
ERIK
341da0e8cb Fix kubeadm task failure when cilium_identity_allocation_mode is undefined (#13121) 
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
 2026-03-20 14:32:13 +05:30
VoidQuark
fae47ab9e6 fix(cilium): quote empty string defaults to prevent null in Helm values (#13109) 2026-03-18 12:43:42 +05:30