External-Mirrors/kubespray
2
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kubespray.git synced 2026-01-09 15:02:08 -03:30
Code Issues Packages Projects Releases Wiki Activity
8,620 Commits 43 Branches 87 Tags
Commit Graph

8620 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Bas
e80087df93
Fix for #12435 - setting timezone under SELinux. (#12436) 
Signed-off-by: Bas Meijer <bas.meijer@enexis.nl>
 2025-12-24 16:40:31 +05:30
Max Gautier
b7491b957b
CI: move vagrant tests to ci-full (#12803) 
Those tests are unfortunately broken, move them to ci-full
 2025-12-21 19:16:32 -08:00
Max Gautier
5cf8f3eefc
Patch versions updates (#12799) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-12-20 02:54:31 -08:00
Ali Afsharzadeh
1cbccf40a5
Upgrade cilium from 1.18.4 to 1.18.5 (#12796) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2025-12-19 07:24:32 -08:00
Max Gautier
bcdd702e19
Enable hash updates on 2.28 (2 latest releases) (#12801) 2025-12-19 01:30:36 -08:00
Max Gautier
20693afe82
cleanup tags deprecated tags 'master' (#12795) 2025-12-17 03:34:08 -08:00
dependabot[bot]
1bbcfd8dd6
build(deps): bump peter-evans/create-pull-request from 7.0.11 to 8.0.0 (#12792) 
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 7.0.11 to 8.0.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](22a9089034...98357b18bf)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-version: 8.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-16 07:12:12 -08:00
dependabot[bot]
8d948f918f
build(deps): bump actions/cache from 4 to 5 (#12791) 
Bumps [actions/cache](https://github.com/actions/cache) from 4 to 5.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-16 06:00:11 -08:00
dependabot[bot]
4d8d1b8aff
build(deps): bump octokit/graphql-action from 3.0.0 to 3.0.2 (#12790) 
Bumps [octokit/graphql-action](https://github.com/octokit/graphql-action) from 3.0.0 to 3.0.2.
- [Release notes](https://github.com/octokit/graphql-action/releases)
- [Commits](abaeca7ba4...ddde8ebb24)

---
updated-dependencies:
- dependency-name: octokit/graphql-action
  dependency-version: 3.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-16 05:56:18 -08:00
r3m8
d80318301d
docs(cilium): update documentation for unprivileged agent configuration (#12628) 2025-12-13 19:39:44 -08:00
Ali Afsharzadeh
31cce09fbc
Check calico version in check mode (#12586) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2025-12-10 00:39:29 -08:00
Max Gautier
9a90c9d6c8
Upgrade elastx ubuntu version (#12776) 
This could fix the glibc version error we're currently having in CI.
 2025-12-09 01:19:32 -08:00
dependabot[bot]
b9e1e8577f
build(deps): bump peter-evans/create-pull-request from 7.0.9 to 7.0.11 (#12774) 
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 7.0.9 to 7.0.11.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](84ae59a2cd...22a9089034)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-version: 7.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-08 04:29:33 -08:00
dependabot[bot]
5d1dd83b07
build(deps): bump stefanbuck/github-issue-parser from 3.2.1 to 3.2.2 (#12773) 
Bumps [stefanbuck/github-issue-parser](https://github.com/stefanbuck/github-issue-parser) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/stefanbuck/github-issue-parser/releases)
- [Commits](2ea9b35a8c...25f1485edf)

---
updated-dependencies:
- dependency-name: stefanbuck/github-issue-parser
  dependency-version: 3.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-07 21:37:27 -08:00
dependabot[bot]
b203586d6b
build(deps): bump actions/checkout from 6.0.0 to 6.0.1 (#12772) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](1af3b93b68...8e8c483db8)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-07 21:25:28 -08:00
Max Gautier
88df61357b
Use run_once for kubeadm init phase upload-certs (#12759) 
Before "5ca23e3bf (Changed to use first_kube_control_plane to parse
kubeadm_certificate_key (#11875), 2025-01-14)", kubespray would have
problem adding new control planes when the order of the nodes in kubectl
output and the ansible inventory were not the same.

But the underlying problem is that the operation is fundamentally
something that should be done only once, and recorded for all host in
play.

Since `register` and `sef_fact` when used with `run_once` set the
variable for all the hosts, use it. Also allows to use the variable
directly instead of relying on hostvars to make the task more readable.
 2025-12-07 21:07:27 -08:00
AFz
2edf176294
docs: fixed rendering issue by using generic markdown format (#12652) 
* docs: fix github markdown style

* docs: use generic markdown format for quotes
 2025-12-07 12:38:57 -08:00
Ali Afsharzadeh
39744146b4
Remove legacy cilium_remove_old_resources task (#12771) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2025-12-07 07:36:55 -08:00
Max Gautier
118b2dce02
Remove checksums for old versions of various components (#12735) 
We only keep 3 minor versions for most stuff
 2025-12-05 06:30:59 -08:00
Ali Afsharzadeh
4c5eda9f1e
Remove legacy tasks that were scheduled for cleanup (#12765) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2025-12-04 23:50:58 -08:00
Max Gautier
2512e0c50c
Patch versions updates (#12762) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-12-04 06:44:57 -08:00
Max Gautier
633d39448e
Add a default (empty) value for supplementary_addresses_in_ssl_keys (#12761) 
Most variables should have a default instead of relying on the default
filter.

(Note that the variable is misnomed, this should be certs and not keys,
but it's not worth breaking compat).
 2025-12-04 05:28:57 -08:00
Max Gautier
4d87ac1032
Simplify collection of SubjectAlternativeNames for apiserver (#12507) 
Remove a bunch of intermediate variables, which fixes a
"'UndefinedMarker' concatenation" error in ansible-lint v25.8.1.
 2025-12-04 02:06:57 -08:00
Chris Ricker
2342d0cd57
Calico: populate kubernetes-services-endpoint for localhost LB (#12598) 
When loadbalancer_apiserver_localhost is enabled, Calico falls back to the
Kubernetes service IP because the kubernetes-services-endpoint ConfigMap is
empty. CNI then fails to reach the API server even though an nginx proxy is
listening on localhost.

Update kube_apiserver_global_endpoint to always reference the localhost load
balancer (respecting the configured port) and populate the ConfigMap for both
eBPF and localhost LB modes.
 2025-12-03 07:22:19 -08:00
Azhan Latif
e6a5266bad
feat: add noCompileLinks option to Docsify configuration (#12751) 2025-12-02 08:24:26 -08:00
dependabot[bot]
57f7c44718
build(deps): bump redhat-plumbers-in-action/advanced-issue-labeler (#12756) 
Bumps [redhat-plumbers-in-action/advanced-issue-labeler](https://github.com/redhat-plumbers-in-action/advanced-issue-labeler) from 3.2.3 to 3.2.4.
- [Release notes](https://github.com/redhat-plumbers-in-action/advanced-issue-labeler/releases)
- [Commits](e38e6809c5...b80ae64e3e)

---
updated-dependencies:
- dependency-name: redhat-plumbers-in-action/advanced-issue-labeler
  dependency-version: 3.2.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-01 06:54:26 -08:00
Seena Fallah
5789dc839c
control-plane: fix first_kube_control_plane delegation with kube_override_hostname (#12636) 
* control-plane: fix first_kube_control_plane delegation with kube_override_hostname

When kube_override_hostname is configured, the node names reported by
`kubectl get nodes` differ from the inventory_hostname known to Ansible.
This causes delegation failures in subsequent tasks since Ansible cannot
resolve the hostname from kubectl output to an inventory host.

Signed-off-by: Seena Fallah <seenafallah@gmail.com>

* control-plane: remove fragile first_control_plane selection logic

Current implementation breaks with kube_override_hostname and has
multiple edge cases. Drop until proper kubectl-based node lookup
can be implemented.

Signed-off-by: Seena Fallah <seenafallah@gmail.com>

---------

Signed-off-by: Seena Fallah <seenafallah@gmail.com>
 2025-11-25 08:10:38 -08:00
Max Gautier
3de6fa7220
Patch versions updates (#12743) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-11-25 01:04:37 -08:00
dependabot[bot]
9a9e8814e6
build(deps): bump peter-evans/create-pull-request from 7.0.8 to 7.0.9 (#12741) 
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 7.0.8 to 7.0.9.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](271a8d0340...84ae59a2cd)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-version: 7.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-24 02:58:38 -08:00
dependabot[bot]
87a4f61d76
build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (#12740) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](08c6903cd8...1af3b93b68)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-11-24 02:46:36 -08:00
Max Gautier
9975b5d525
Remove download support for old calico versions (#12724) 
we no longer deploy those versions
 2025-11-20 04:56:01 -08:00
Max Gautier
9d06ce1a8d
CI: enable unsafe_show_logs == true by default (#12702) 
* CI: enable unsafe_show_logs == true by default

* Deduplicate defaults vars (unsafe_show_logs)
 2025-11-19 23:10:00 -08:00
Ali Afsharzadeh
bce107ce3d
Upgrade cilium from 1.18.3 to 1.18.4 (#12717) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2025-11-18 19:51:59 -08:00
Kubernetes Prow Robot
7d7a42d931
Merge pull request #12723 from VannTen/molecule_var_in_inventory 
Put molecule variables in molecule inventories
 2025-11-18 19:47:58 -08:00
Max Gautier
5183679a89
crio: molecule: move variables to inventory 
Fix download/file (which needs the variable to determine the correct
binaries)
 2025-11-18 15:44:09 +01:00
Max Gautier
b4fe577203
gvisor: molecule: move variables to inventory 
Fix download/file (which needs the variable to determine the correct
binaries)
 2025-11-18 15:44:08 +01:00
Max Gautier
bde51ebddf
youki: molecule: move variables to inventory 
Fix download/file (which needs the variable to determine the correct
binaries)
 2025-11-18 15:44:06 +01:00
Max Gautier
381426d6d5
cri-docker: molecule: move container_manager to inventory var 2025-11-18 15:44:05 +01:00
Ali Afsharzadeh
b3ee6d6b75
Adjust hubble export values for cilium 1.18 schema change (#12665) 
Signed-off-by: Ali Afsharzadeh <afsharzadeh8@gmail.com>
 2025-11-18 00:07:37 -08:00
ChengHao Yang
7436d63faa
Patch versions updates (#12678) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-11-17 05:01:39 -08:00
Max Gautier
6138c6a1a2
CI: use a dedicated disk for releases (#12692) 
This should make 'no space left on device' problems easier to handle

Use /tmp/releases as local_release_dir CI created machine, while keeping
the same folder on the runner (needed for gitlab-ci runner pods)
 2025-11-17 02:57:39 -08:00
Max Gautier
6115eba3c3
CI: label VirtualMachineInstance with PR id and pipeline ids (#12716) 
Helps with CI debuggability
 2025-11-17 02:21:39 -08:00
Kubernetes Prow Robot
1c008d79b1
Merge pull request #12714 from tico88612/feat/gateway-api-auto-bump 
Feat: Gateway API auto bump
 2025-11-16 06:27:37 -08:00
ChengHao Yang
b4bbec6772
Feat: Gateway API version always get latest 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-11-16 22:11:48 +08:00
ChengHao Yang
5c6ee4852a
Bump: Gateway API to 1.4.0 and set latest version 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-11-16 21:53:59 +08:00
ChengHao Yang
8190f952c1
Feat: add Gateway API component hash update 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-11-16 21:49:43 +08:00
ChengHao Yang
3edc3d7a36
Style: components.py argocd indent fix 
Signed-off-by: ChengHao Yang <17496418+tico88612@users.noreply.github.com>
 2025-11-16 21:48:32 +08:00
peterw
2f3f1d7e65
crio: add option pull_progress_timeout (#12555) 2025-11-15 19:53:37 -08:00
Max Gautier
71c69ec12c
CI: Try a full ssh connection on hosts instead of only checking the port (#12416) 
* CI: Try a full ssh connection on hosts instead of only checking the port

If we only try the port, we can try to connect in the playbook which is
executed next even though the managed node has not yet completed it's
boot-up sequence ("System is booting up. Unprivileged users are not
permitted to log in yet. Please come back later. For technical details,
see pam_nologin(8).")

This does not account for python-less hosts, but we don't use those in
CI anyway (for now, at least).

* CI: Remove connection method override when creating VMs

This prevented wait_for_connection to work correctly by hijacking the
connection to localhost, thus bypassing the connection check.
 2025-11-15 08:37:37 -08:00
R. P. Taylor
dab0947150
change kubectl_node_schedulable var (#12661) 2025-11-15 07:01:37 -08:00