yolokube/ansible
yolokube/ansible
3
1
Fork 0
Code Issues 3 Pull requests 2 Projects Wiki Activity

Upgrade debian to trixie (13) #66

Open
tom wants to merge 16 commits from tn_upgrade_debian_to_13 into main
pull from: tn_upgrade_debian_to_13
merge into: yolokube:main
Conversation 2 Commits 16 Files changed 15 +241 -110
tom commented 2025-10-16 14:31:54 +02:00
Owner
Copy link
No description provided.
tom added this to the Prod Ready milestone 2025-10-16 14:31:54 +02:00
tom self-assigned this 2025-10-16 14:31:54 +02:00
chore(inventory/hcloud): labels got renamed to hcloud_labels
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
904e3b1fcc
tom added this to the Updates project 2025-10-16 14:31:54 +02:00
tom changed title from Upgrade debian to trixie (13) to WIP: Upgrade debian to trixie (13) 2025-10-16 14:31:59 +02:00
chore(roles): improve GPG key downloading and dearmoring task
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
74760e1a98
tom force-pushed tn_upgrade_debian_to_13 from 74760e1a98
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
to 22fa7b3925
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-16 15:17:01 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 22fa7b3925
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to fe4d976ac4
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-16 15:23:54 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from fe4d976ac4
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 7d9dd6ff9e
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-16 15:46:19 +02:00 Compare
chore(scripts/rebuild-staging-cluster): silence hcloud spinner
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
68910c0406
style(tasks): fix typo
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
8abd472e09
style(roles/common): sort dependencies
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
4df8656a15
chore(roles/common): add golang-cfssl as dependency to generate etcd certs
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
27ffdbfc17
tom force-pushed tn_upgrade_debian_to_13 from 27ffdbfc17
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 4df8656a15
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
2025-10-16 16:59:45 +02:00 Compare
chore(roles): fetch floating IP data via localhost and limit to once
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
03f363aeed
tom force-pushed tn_upgrade_debian_to_13 from 03f363aeed
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to f538d7b798
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
2025-10-16 17:25:31 +02:00 Compare
chore(roles/master): adjust network template naming for host IP addresses
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
d278dfcf09
tom force-pushed tn_upgrade_debian_to_13 from d278dfcf09
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 9e58246aae
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-16 18:46:07 +02:00 Compare
chore(roles/master): add cleanup workaround to be able to restart the network service
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
8d991b3222
tom force-pushed tn_upgrade_debian_to_13 from 8d991b3222
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 54f7bab51d
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-16 19:21:16 +02:00 Compare
aaron requested changes 2025-10-16 21:52:51 +02:00
aaron left a comment
Owner
Copy link

I would only change the apt repo handling. Besides that it looks great, thanks <3

I would only change the apt repo handling. Besides that it looks great, thanks <3
❤️ 1
roles/containerd/tasks/main.yaml Outdated
@ -4,3 +2,1 @@
set -o pipefail
curl -L https://download.docker.com/linux/debian/gpg | gpg --dearmor | tee /etc/apt/keyrings/docker.gpg > /dev/null
args:
- name: Download and dearmor Docker GPG key
aaron commented 2025-10-16 21:50:18 +02:00
Owner
Copy link

Instead of using shell here we might consider using the apt_key and apt_repository modules from ansible.builtin:

- name: Add the docker debian repo apt key
  ansible.builtin.apt_key:
    url: https://download.docker.com/linux/debian/gpg
    state: present
- name: Add docker repo to apt
  ansible.builtin.apt_repository:
    repo: "deb https://download.docker.com/linux/debian {{ ansible_facts['distribution_release'] }} stable"
    state: present
    filename: docker
Instead of using `shell` here we might consider using the `apt_key` and `apt_repository` modules from `ansible.builtin`: ```yaml - name: Add the docker debian repo apt key ansible.builtin.apt_key: url: https://download.docker.com/linux/debian/gpg state: present - name: Add docker repo to apt ansible.builtin.apt_repository: repo: "deb https://download.docker.com/linux/debian {{ ansible_facts['distribution_release'] }} stable" state: present filename: docker ```
tom commented 2025-10-16 22:35:13 +02:00
Author
Owner
Copy link

Thanks for the hint, I switched to apt_key 😃

Thanks for the hint, I switched to `apt_key` 😃
tom commented 2025-10-16 22:57:11 +02:00
Author
Owner
Copy link

Well, good try...
apt-key got removed in Debian trixie and Ansible has deprecated the module apt_key since v2.19.0 xD 🙈
https://github.com/ansible/ansible/issues/84478
https://github.com/ansible/ansible/pull/84555

https://github.com/ansible/ansible/blob/v2.19.3/changelogs/CHANGELOG-v2.19.rst?plain=1#L168

- apt_key module - add notes to docs and errors to point at the CLI tool deprecation by Debian and alternatives
- apt_repository - remove Python 2 support
- apt_repository module - add notes to errors to point at the CLI tool deprecation by Debian and alternatives
Well, good try... `apt-key` got removed in Debian trixie and Ansible has deprecated the module `apt_key` since v2.19.0 xD 🙈 https://github.com/ansible/ansible/issues/84478 https://github.com/ansible/ansible/pull/84555 https://github.com/ansible/ansible/blob/v2.19.3/changelogs/CHANGELOG-v2.19.rst?plain=1#L168 ``` - apt_key module - add notes to docs and errors to point at the CLI tool deprecation by Debian and alternatives - apt_repository - remove Python 2 support - apt_repository module - add notes to errors to point at the CLI tool deprecation by Debian and alternatives ```
roles/kubernetes/tasks/main.yaml Outdated
@ -29,3 +27,1 @@
set -o pipefail
curl -L https://pkgs.k8s.io/core:/stable:/{{ minor_k8s_version }}/deb/Release.key | gpg --dearmor | tee /etc/apt/keyrings/kubernetes.gpg > /dev/null
args:
- name: Download and dearmor Kubernetes GPG key
aaron commented 2025-10-16 21:51:02 +02:00
Owner
Copy link

same here, we should consider using the ansible.builtin modules

same here, we should consider using the `ansible.builtin` modules
tom marked this conversation as resolved
roles/master/tasks/main.yaml Outdated
@ -11,3 +9,1 @@
set -o pipefail
curl -L https://packages.buildkite.com/helm-linux/helm-debian/gpgkey | gpg --dearmor | tee /etc/apt/keyrings/helm.gpg > /dev/null
args:
- name: Download and dearmor Helm GPG key
aaron commented 2025-10-16 21:51:28 +02:00
Owner
Copy link

same here, we should consider using the ansible.builtin modules

same here, we should consider using the `ansible.builtin` modules
tom marked this conversation as resolved
tom force-pushed tn_upgrade_debian_to_13 from 16917e330a
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
to 8dd9f051af
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
ci/woodpecker/push/woodpecker Pipeline failed
Details
2025-10-16 21:54:15 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 8dd9f051af
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
ci/woodpecker/push/woodpecker Pipeline failed
Details
to fb5c95ddf6
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-16 22:17:36 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from fb5c95ddf6
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to 5b98a9a9f6
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-16 22:20:38 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 5b98a9a9f6
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 6d575dbf6f
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
2025-10-16 22:31:39 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 6d575dbf6f
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
to a1a8ad2176
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-16 23:16:05 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from a1a8ad2176
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 7b8d636b8f
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-16 23:48:07 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 7b8d636b8f
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 8663d8f62d
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
2025-10-17 00:12:50 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 8663d8f62d
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
to 000c50db19
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-17 00:30:34 +02:00 Compare
tom commented 2025-10-17 00:37:39 +02:00
Author
Owner
Copy link

@aaron It's good that we're testing it. K8s 1.34.0 requires etcd version >= 3.5.21-0 (we currently have 3.5.18). Therefore, we need to build and roll out an etcd update playbook before we do the k8s update 😃

@aaron It's good that we're testing it. K8s `1.34.0` requires etcd version >= `3.5.21-0` (we currently have `3.5.18`). Therefore, we need to build and roll out an etcd update playbook before we do the k8s update 😃
feat(updates): add playbook to update etcd
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
ci/woodpecker/push/woodpecker Pipeline failed
Details
f8ca3d6b28
tom force-pushed tn_upgrade_debian_to_13 from f8ca3d6b28
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
ci/woodpecker/push/woodpecker Pipeline failed
Details
to c470d3e8f5
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-22 12:47:48 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from c470d3e8f5
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to e3baace612
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-10-22 12:58:34 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from e3baace612
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
to 5ed7e1a252
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-22 17:24:28 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 5ed7e1a252
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to a10fe22e3b
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
ci/woodpecker/push/woodpecker Pipeline failed
Details
2025-10-22 17:29:51 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from a10fe22e3b
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
ci/woodpecker/push/woodpecker Pipeline failed
Details
to 28724fe35c
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-22 17:31:58 +02:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 28724fe35c
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to b37192429f
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-22 17:33:01 +02:00 Compare
tom changed title from WIP: Upgrade debian to trixie (13) to Upgrade debian to trixie (13) 2025-10-22 17:33:43 +02:00
tom requested review from aaron 2025-10-22 17:33:46 +02:00
tom force-pushed tn_upgrade_debian_to_13 from b37192429f
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to a0a947a8ef
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-26 17:54:43 +01:00 Compare
chore(updates): satisfy linter
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
421d7abe3a
tom force-pushed tn_upgrade_debian_to_13 from 421d7abe3a
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to a0a947a8ef
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-10-26 17:56:55 +01:00 Compare
chore(linter): ignore non-existing attributes like host groups because of dynamic inventory
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
86b275abf8
tom force-pushed tn_upgrade_debian_to_13 from 86b275abf8
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to 7df2656255
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-11-26 14:41:19 +01:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from 7df2656255
Some checks failed
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to a21c77a4d6
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
2025-11-26 14:43:40 +01:00 Compare
tom force-pushed tn_upgrade_debian_to_13 from a21c77a4d6
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details
ci/woodpecker/pr/woodpecker Pipeline failed
Details
to fe8f5889ee
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
2025-11-26 15:06:34 +01:00 Compare
All checks were successful
ci/woodpecker/pr/woodpecker Pipeline was successful
Details
ci/woodpecker/push/woodpecker Pipeline was successful
Details
This pull request can be merged automatically.
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin tn_upgrade_debian_to_13:tn_upgrade_debian_to_13
git switch tn_upgrade_debian_to_13
Sign in to join this conversation.
Reviewers
No reviewers
aaron
Labels
Clear labels   
system
CNI

  
system
Common

  
system
Core Deployments

  
system
Infrastructure

  
system
Storage

  
type
bug
Something is not working

  
type
enhancement
New feature

  
type
question
More information is needed

  
type
update
Software needs update

  
type
dependency-dashboard
Only for Renovate Dependency Dashboard

No labels
system
CNI
system
Common
system
Core Deployments
system
Infrastructure
system
Storage
type
bug
type
enhancement
type
question
type
update
type
dependency-dashboard
Milestone
Clear milestone
No items
No milestone
Prod Ready
Projects
Clear projects
No items
No project
Updates
Assignees
Clear assignees
No assignees
tom
aaron
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
yolokube/ansible!66
No description provided.