From b3588c4c3bf53365154a5318249c0c3783e96fd3 Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Wed, 19 Jun 2024 11:54:57 -0500 Subject: [PATCH 1/9] chore(deps): Updated all k8s components --- inventory/sample/group_vars/all.yml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/inventory/sample/group_vars/all.yml b/inventory/sample/group_vars/all.yml index 909746d51..c8397b43b 100644 --- a/inventory/sample/group_vars/all.yml +++ b/inventory/sample/group_vars/all.yml @@ -1,5 +1,5 @@ --- -k3s_version: v1.29.2+k3s1 +k3s_version: v1.30.1+k3s1 # this is the user that has ssh access to these machines ansible_user: ansibleuser systemd_dir: /etc/systemd/system @@ -13,13 +13,13 @@ flannel_iface: "eth0" # uncomment calico_iface to use tigera operator/calico cni instead of flannel https://docs.tigera.io/calico/latest/about # calico_iface: "eth0" calico_ebpf: false # use eBPF dataplane instead of iptables -calico_tag: "v3.27.2" # calico version tag +calico_tag: "v3.28.0" # calico version tag # uncomment cilium_iface to use cilium cni instead of flannel or calico # ensure v4.19.57, v5.1.16, v5.2.0 or more recent kernel # cilium_iface: "eth0" cilium_mode: "native" # native when nodes on same subnet or using bgp, else set routed -cilium_tag: "v1.15.2" # cilium version tag +cilium_tag: "v1.15.6" # cilium version tag cilium_hubble: true # enable hubble observability relay and ui # if using calico or cilium, you may specify the cluster pod cidr pool @@ -72,7 +72,7 @@ extra_agent_args: >- {{ extra_args }} # image tag for kube-vip -kube_vip_tag_version: "v0.7.2" +kube_vip_tag_version: "v0.8.0" # tag for kube-vip-cloud-provider manifest # kube_vip_cloud_provider_tag_version: "main" @@ -93,8 +93,8 @@ metal_lb_mode: "layer2" # metal_lb_bgp_peer_address: "192.168.30.1" # image tag for metal lb -metal_lb_speaker_tag_version: "v0.14.3" -metal_lb_controller_tag_version: "v0.14.3" +metal_lb_speaker_tag_version: "v0.14.5" +metal_lb_controller_tag_version: "v0.14.5" # metallb ip range for load balancer metal_lb_ip_range: "192.168.30.80-192.168.30.90" From a40a7d7e71afdaeb0a1ba23e73ff4e539d422c41 Mon Sep 17 00:00:00 2001 From: Techno Tim Date: Wed, 19 Jun 2024 12:01:59 -0500 Subject: [PATCH 2/9] Metallb 0.14.4 support (#533) * Added support for metallb >= 0.14.4 * update gpg * Added support for metallb >= 0.14.4 * remove extra file --------- Co-authored-by: Konstantin Kornienko Co-authored-by: Konstantin Kornienko --- roles/k3s_server_post/tasks/metallb.yml | 16 +++++++++++++++- 1 file changed, 15 insertions(+), 1 deletion(-) diff --git a/roles/k3s_server_post/tasks/metallb.yml b/roles/k3s_server_post/tasks/metallb.yml index 07a23b0f2..7699fb4d2 100644 --- a/roles/k3s_server_post/tasks/metallb.yml +++ b/roles/k3s_server_post/tasks/metallb.yml @@ -83,9 +83,23 @@ loop_control: label: "{{ item.description }}" +- name: Set metallb webhook service name + set_fact: + metallb_webhook_service_name: >- + {{ + ( + (metal_lb_controller_tag_version | regex_replace('^v', '')) + is + version('0.14.4', '<', version_type='semver') + ) | ternary( + 'webhook-service', + 'metallb-webhook-service' + ) + }} + - name: Test metallb-system webhook-service endpoint command: >- - k3s kubectl -n metallb-system get endpoints webhook-service + k3s kubectl -n metallb-system get endpoints {{ metallb_webhook_service_name }} changed_when: false with_items: "{{ groups[group_name_master | default('master')] }}" run_once: true From 7728ba0dd18b21ee203ac20a4dd0f0ce8387bdb6 Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Wed, 19 Jun 2024 12:52:15 -0500 Subject: [PATCH 3/9] chore(deps): Updated actions --- .github/workflows/lint.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 9029e718e..b10e0a04f 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -47,7 +47,7 @@ jobs: - name: Checkout code uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # 4.1.7 - name: Ensure SHA pinned actions - uses: zgosalvez/github-actions-ensure-sha-pinned-actions@2f2ebc6d914ab515939dc13f570f91baeb2c194c # 3.0.6 + uses: zgosalvez/github-actions-ensure-sha-pinned-actions@74606c30450304eee8660aae751818321754feb1 # 3.0.9 with: allowlist: | aws-actions/ From 49ce3b84d9a1602ba59e7cfc81cc64de8c3b9516 Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Fri, 21 Jun 2024 15:54:09 -0500 Subject: [PATCH 4/9] chore(dependencies): Roll back ansible-core --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 998a02da2..079e5615a 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ # ansible-compat==4.1.11 # via molecule -ansible-core==2.17.0 +ansible-core==2.16.6 # via # -r requirements.in # ansible-compat From 09a9300915e273215f523fd4ee3057f04def5441 Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Fri, 21 Jun 2024 15:56:20 -0500 Subject: [PATCH 5/9] chore(deps): Updated kube-vip --- inventory/sample/group_vars/all.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/inventory/sample/group_vars/all.yml b/inventory/sample/group_vars/all.yml index c8397b43b..065125f7f 100644 --- a/inventory/sample/group_vars/all.yml +++ b/inventory/sample/group_vars/all.yml @@ -72,7 +72,7 @@ extra_agent_args: >- {{ extra_args }} # image tag for kube-vip -kube_vip_tag_version: "v0.8.0" +kube_vip_tag_version: "v0.8.1" # tag for kube-vip-cloud-provider manifest # kube_vip_cloud_provider_tag_version: "main" From 210f1ea6ced8941e78363a4fa1e68932bc715482 Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Fri, 26 Jul 2024 16:55:38 -0500 Subject: [PATCH 6/9] chore(deps): Updated dependencies --- inventory/sample/group_vars/all.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/inventory/sample/group_vars/all.yml b/inventory/sample/group_vars/all.yml index 065125f7f..1341680a1 100644 --- a/inventory/sample/group_vars/all.yml +++ b/inventory/sample/group_vars/all.yml @@ -1,5 +1,5 @@ --- -k3s_version: v1.30.1+k3s1 +k3s_version: v1.30.1+k3s2 # this is the user that has ssh access to these machines ansible_user: ansibleuser systemd_dir: /etc/systemd/system @@ -19,7 +19,7 @@ calico_tag: "v3.28.0" # calico version tag # ensure v4.19.57, v5.1.16, v5.2.0 or more recent kernel # cilium_iface: "eth0" cilium_mode: "native" # native when nodes on same subnet or using bgp, else set routed -cilium_tag: "v1.15.6" # cilium version tag +cilium_tag: "v1.16.0" # cilium version tag cilium_hubble: true # enable hubble observability relay and ui # if using calico or cilium, you may specify the cluster pod cidr pool @@ -72,7 +72,7 @@ extra_agent_args: >- {{ extra_args }} # image tag for kube-vip -kube_vip_tag_version: "v0.8.1" +kube_vip_tag_version: "v0.8.2" # tag for kube-vip-cloud-provider manifest # kube_vip_cloud_provider_tag_version: "main" @@ -93,8 +93,8 @@ metal_lb_mode: "layer2" # metal_lb_bgp_peer_address: "192.168.30.1" # image tag for metal lb -metal_lb_speaker_tag_version: "v0.14.5" -metal_lb_controller_tag_version: "v0.14.5" +metal_lb_speaker_tag_version: "v0.14.8" +metal_lb_controller_tag_version: "v0.14.8" # metallb ip range for load balancer metal_lb_ip_range: "192.168.30.80-192.168.30.90" From bb4d02beb7de5d37551b6a55b3bcd1adb5ffc07e Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Fri, 26 Jul 2024 17:53:39 -0500 Subject: [PATCH 7/9] chore(deps): Updated dependencies --- inventory/sample/group_vars/all.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/inventory/sample/group_vars/all.yml b/inventory/sample/group_vars/all.yml index 1341680a1..01b1fe9d9 100644 --- a/inventory/sample/group_vars/all.yml +++ b/inventory/sample/group_vars/all.yml @@ -1,5 +1,5 @@ --- -k3s_version: v1.30.1+k3s2 +k3s_version: v1.30.2+k3s2 # this is the user that has ssh access to these machines ansible_user: ansibleuser systemd_dir: /etc/systemd/system From 213ca56438166a90e9bbda93ad8b9b1b780f9a17 Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Sat, 27 Jul 2024 22:59:30 -0500 Subject: [PATCH 8/9] fix(cilium): fixing logic --- roles/k3s_server/tasks/main.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/roles/k3s_server/tasks/main.yml b/roles/k3s_server/tasks/main.yml index 45adf9a51..ae2d8e9be 100644 --- a/roles/k3s_server/tasks/main.yml +++ b/roles/k3s_server/tasks/main.yml @@ -29,7 +29,7 @@ - name: Deploy metallb manifest include_tasks: metallb.yml tags: metallb - when: kube_vip_lb_ip_range is not defined and (cilium_bgp is not defined or cilium_iface is not defined) + when: kube_vip_lb_ip_range is not defined and (not cilium_bgp or cilium_iface is not defined) - name: Deploy kube-vip manifest include_tasks: kube-vip.yml From 717971a707d4a9e237426197d7ccabf220fa44fe Mon Sep 17 00:00:00 2001 From: Timothy Stewart Date: Sat, 27 Jul 2024 23:40:13 -0500 Subject: [PATCH 9/9] fix(cilium): fixing logic --- roles/k3s_server_post/tasks/main.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/roles/k3s_server_post/tasks/main.yml b/roles/k3s_server_post/tasks/main.yml index 2cf679cc9..588f026ab 100644 --- a/roles/k3s_server_post/tasks/main.yml +++ b/roles/k3s_server_post/tasks/main.yml @@ -12,7 +12,7 @@ - name: Deploy metallb pool include_tasks: metallb.yml tags: metallb - when: kube_vip_lb_ip_range is not defined and (cilium_bgp is not defined or cilium_iface is not defined) + when: kube_vip_lb_ip_range is not defined and (not cilium_bgp or cilium_iface is not defined) - name: Remove tmp directory used for manifests file: