Unnecessary installation of kube-proxy in v2.28.0

### What happened?

Kube-proxy daemonset appeared in the cluster when upgrading 2.27.0 -> 2.28.0

### What did you expect to happen?

Kube-proxy should be disabled when kube-router CNI is used or explicitly disabled via `kube_proxy_remove: true`

### How can we reproduce it (as minimally and precisely as possible)?

Set kube-router plugin or explicitly disable kube-proxy.

### OS

Ubuntu 22

### Version of Ansible

ansible [core 2.16.14]

### Version of Python

python version = 3.11.7

### Version of Kubespray (commit)

63cdf8791

### Network plugin used

kube-router

### Full inventory with variables

Not required

### Command used to invoke ansible

Not required

### Output of ansible run

Not required

### Anything else we need to know

Problem is here

https://github.com/kubernetes-sigs/kubespray/blob/63cdf87915421dda5955281f38401fd1b55b230b/roles/kubernetes/control-plane/tasks/kubeadm-upgrade.yml#L6-L41

This should be added to both commands

```
    {%- endif %}
    --skip-phases={{ kubeadm_init_phases_skip | join(',') }}
```

	- name: Kubeadm \| Upgrade first control plane node
	command: >-
	timeout -k 600s 600s
	{{ bin_dir }}/kubeadm upgrade apply -y v{{ kube_version }}
	{%- if kubeadm_config_api_version == 'v1beta3' %}
	--certificate-renewal={{ kubeadm_upgrade_auto_cert_renewal }}
	--ignore-preflight-errors={{ kubeadm_ignore_preflight_errors \| join(',') }}
	--allow-experimental-upgrades
	--etcd-upgrade={{ (etcd_deployment_type == "kubeadm") \| lower }}
	{% if kubeadm_patches \| length > 0 %}--patches={{ kubeadm_patches_dir }}{% endif %}
	--force
	{%- else %}
	--config={{ kube_config_dir }}/kubeadm-config.yaml
	{%- endif -%}
	register: kubeadm_upgrade
	when: inventory_hostname == first_kube_control_plane
	failed_when: kubeadm_upgrade.rc != 0 and "field is immutable" not in kubeadm_upgrade.stderr
	environment:
	PATH: "{{ bin_dir }}:{{ ansible_env.PATH }}"

	- name: Kubeadm \| Upgrade other control plane nodes
	command: >-
	{{ bin_dir }}/kubeadm upgrade node
	{%- if kubeadm_config_api_version == 'v1beta3' %}
	--certificate-renewal={{ kubeadm_upgrade_auto_cert_renewal }}
	--ignore-preflight-errors={{ kubeadm_ignore_preflight_errors \| join(',') }}
	--etcd-upgrade={{ (etcd_deployment_type == "kubeadm") \| lower }}
	{% if kubeadm_patches \| length > 0 %}--patches={{ kubeadm_patches_dir }}{% endif %}
	{%- else %}
	--config={{ kube_config_dir }}/kubeadm-config.yaml
	{%- endif -%}
	register: kubeadm_upgrade
	when: inventory_hostname != first_kube_control_plane
	failed_when: kubeadm_upgrade.rc != 0 and "field is immutable" not in kubeadm_upgrade.stderr
	environment:
	PATH: "{{ bin_dir }}:{{ ansible_env.PATH }}"

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Unnecessary installation of kube-proxy in v2.28.0 #12303

What happened?

What did you expect to happen?

How can we reproduce it (as minimally and precisely as possible)?

OS

Version of Ansible

Version of Python

Version of Kubespray (commit)

Network plugin used

Full inventory with variables

Command used to invoke ansible

Output of ansible run

Anything else we need to know

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Unnecessary installation of kube-proxy in v2.28.0 #12303

Description

What happened?

What did you expect to happen?

How can we reproduce it (as minimally and precisely as possible)?

OS

Version of Ansible

Version of Python

Version of Kubespray (commit)

Network plugin used

Full inventory with variables

Command used to invoke ansible

Output of ansible run

Anything else we need to know

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions