kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
11,643 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

122 Commits

Author SHA1 Message Date
John Gardiner Myers 00c60ddff6 Add server code to kops-controller 2020-08-15 09:46:30 -07:00
Ciprian Hacman d70fb506e5 Remove unused FSRoot from NodeUp 2020-08-12 18:35:35 +03:00
Ciprian Hacman d75042cc85 Remove unused Tags from NodeUp 2020-08-12 18:35:26 +03:00
John Gardiner Myers c2cb6646af Remove tags from NodeupConfig 2020-07-29 17:24:39 -07:00
John Gardiner Myers 28caf07afa Stop using the _automatic_upgrades tag 2020-07-29 17:24:32 -07:00
Ciprian Hacman ed3f43bf4c Remove the checksum workaround for Flannel VXLAN 2020-07-10 07:55:52 +03:00
John Gardiner Myers 5e5f25703d Move KubeletConfig into the NodeupConfig 2020-06-28 18:51:16 -07:00
John Gardiner Myers 87a981093b Remove unused loading code from Loader 2020-06-19 23:30:56 -07:00
John Gardiner Myers 6fa80b5442 Refactor lyft config file to Go code 2020-06-19 23:30:52 -07:00
Ciprian Hacman 5546935029 ARM64 support - Update NodeUp for multi-arch 2020-06-19 04:42:11 +03:00
Ciprian Hacman fa258dd410 Install common CNI plugin binaries for all network plugins 2020-06-09 10:09:03 +03:00
Ciprian Hacman ea106c4be8 Copy "portmap" to /opt/cni/bin for Weave 2020-06-08 19:34:44 +03:00
John Gardiner Myers 8b9145f6c4 Create nodetasks.IssueCert() 2020-06-05 08:00:38 -07:00
Kubernetes Prow Robot 9e4bf1699a
Merge pull request #9216 from hakman/prepare-multi-arch 
Prepare Kops for multi-architecture support
 2020-06-04 21:35:43 -07:00
Ole Markus With eb06f2787e EtcdTLSBuilder moved to networking and renamed to CalicoBuilder 
EtcdTLSBuilder is now only used in legacy configurations of calico so renaming appropriatly
 2020-06-04 17:32:45 +02:00
Ole Markus With b62f6aa894 Move networking in nodeup to dedicated subpackage 2020-06-04 17:32:41 +02:00
Ciprian Hacman 654a0d2d8a Detect supported architecture during node setup 2020-06-03 17:23:59 +03:00
Kubernetes Prow Robot e6d73b5ba0
Merge pull request #9135 from justinsb/gce_no_hostname_no_worries 
GCE: don't rely on hostname being correct
 2020-05-22 17:43:10 -07:00
John Gardiner Myers 8a6d29cd40 Remove support for reading legacy-format keypairs 2020-05-20 13:28:13 -07:00
Justin SB 5ed11fd9c7 GCE: don't rely on hostname being correct 
Distros that use systemd for DHCP often don't have the hostname
correct, due to e.g. the requirement for policy kit.

We don't rely on it being set correctly on other clouds; no real
reason to require it on GCP either!
 2020-05-17 15:20:58 -04:00
Justin SB 75fd939a62
kube-apiserver: healthcheck via sidecar container 
kube-apiserver doesn't expose the healthcheck via a dedicated
endpoint, instead relying on anonyomous-access being enabled.  That
has previously forced us to enable the unauthenticated endpoint on
127.0.0.1:8080.

Instead we now run a small sidecar container, which
proxies /healthz and /readyz requests (only) adding appropriate
authentication using a client certificate.

This will also enable better load balancer checks in future, as these
have previously been hampered by the custom CA certificate.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-07 08:06:52 -04:00
Ole Markus With 869ab75dea Use etcd-manager for the cilium etcd cluster 2020-04-16 08:42:59 +02:00
Ciprian Hacman 87bbcd615c Use cluster name as default subnet tag for Lyft CNI 2020-02-17 17:39:07 +02:00
John Gardiner Myers 4236ce115c Don't load nonexistent calico-client cert when CNI is Cilium 2020-01-15 14:06:51 -08:00
Justin Santa Barbara e4ed13ed57 Move protokube image task to ProtokubeBuilder 
More logically consistent, and allows us to be lazier about loading
it when not needed.
 2020-01-04 17:46:16 -05:00
Ciprian Hacman 42b73b877d Add support for containerd container runtime 2019-12-15 21:37:57 +02:00
Xiaoyu Zhong a6dab47cbb Alicloud: remove unnecessary if 2019-10-30 14:28:53 +08:00
Xiaoyu Zhong cc3968b759 Alicloud: fix error msg when check hostname 2019-10-20 11:32:55 +08:00
Xiaoyu Zhong 002ddbb270 Alicloud: add hostname override 2019-10-16 21:53:40 +08:00
Lars Lehtonen 659a415c6e upup/pkg/fi/cloudup/awstasks: fix dropped error 
upup/pkg/fi/cloudup/openstacktasks: fix dropped error

upup/pkg/fi/nodeup: fix dropped error
 2019-09-13 07:54:35 -07:00
mikesplain 9e55b8230a Update copyright notices 
Also cleans some white spaces
 2019-09-09 14:47:51 -04:00
Kubernetes Prow Robot 2178721764
Merge pull request #6236 from justinsb/fixup_ntp_install 
Move NTP and misc packages initialization to code
 2019-07-22 07:18:52 -07:00
Justin SB 10a7f9afb0
Move NTP and misc package initialization to code 
Paring down the nodeup portion of gobindata
 2019-07-19 07:34:44 -04:00
Thomas Jackson ea61fb8de0 Replace behavior for aws hostnameOverride 
If the cluster's VPC includes DHCP options the local-hostname includes
the DHCP zone instead of the private DNS name from AWS (which is what
k8s uses regardless of flags). This patch simply makes the
hostnameOverride implementation match by using the AWS api to get the
private DNS name

Related to #7172
 2019-07-17 10:30:07 -07:00
Justin SB 3e33ac7682
Change code from glog to klog 
We don't call klog.InitFlags yet, because that will cause a flag
redefinition error until we get everyone to stop using glog.  That
will happen when we update to k8s 1.13.
 2019-05-06 12:54:51 -04:00
Justin SB 7bd4a7e262
Support download protokube from mirror 2019-03-26 00:45:54 -04:00
Justin SB dd7533398d
Support etcd-manager v3, suitable for backporting 
Add etcd-manager v3 in a way that we can safely backport.
 2019-01-29 23:51:26 -05:00
Rohith 1b69cea3cb - adding the volumebuilder into the nodeup binary to provision the mapped volumes 2019-01-18 22:45:05 +00:00
Justin SB 26bd75aecb
Bulk spelling fixes 
Experimenting with my own spelling checker, these are the typos it caught.
 2018-12-20 17:43:56 -05:00
Chris Phillips f0a7fa785c allow overriding subnet tags in the NetworkSpec 2018-11-07 08:08:44 -08:00
Chris Phillips 2b9a56f8e6 rename to LyftVPC. Removes all the settings from the NetworkingSpec 2018-11-07 08:08:44 -08:00
Chris Phillips 4d40090c0c adds loopback to list of cni assets. fix gofmt 2018-11-07 08:08:13 -08:00
Chris Phillips 3a8078763a Adds support for Lyft's cni-ipvlan-vpc-k8s 
https://github.com/lyft/cni-ipvlan-vpc-k8s

This cni solution is slightly different in that it doesn't require running a daemonset

It requires:
  * a config file in /etc/cni/net.d
  * the binaries in /opt/cni/bin
  * adding the --node-ip param to the kubelet

This code is modeled after the AmazonVPC cni bits.

I've left the setup of the required subnets as an exercise to the reader.
 2018-11-07 08:08:13 -08:00
Justin Santa Barbara 16985c3abc Remove _kubernetes_master tag 
We can get the master role just as readily from the InstanceGroup spec
 2018-08-14 21:01:07 -04:00
Justin Santa Barbara e54c844e13 Force-load br_netfilter in nodeup 
This does a best-effort modprobe of br_netfilter, to try to address
the DNS issues when the module is not loaded.

In 1.11 we'll have to look at this further, and probably we want an
error if the modprobe fails.
 2018-07-22 13:15:22 -04:00
Rohith 304d0ce8a9 - consuming the node authorization api spec in nodeup binary 
- adding the options builder to fill in the model
- adding the spec into the bootstrap config
 2018-07-06 20:14:35 +01:00
k8s-ci-robot f346efd290
Merge pull request #5240 from nebril/etcd-tls 
Add etcd TLS support for Cilium
 2018-06-21 09:23:37 -07:00
Maciej Kwiek a72b9e4b38 Generalize CalicoBuilder into EtcdTLSBuilder 
Cilium was using the same code as Calico to retrieve etcd certs, new
builder is not Calico-specific.

calico name of certs is retained to ensure backward compatibility

Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-06-20 15:25:23 +02:00
Maciej Kwiek e1a0f4a73e Etcd TLS support for Cilium 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-06-20 14:27:24 +02:00
Justin Santa Barbara 1af610a6c4 Use fast-retry and cleanup task options for tests 
The launch configuration test exposed that our integration tests don't
retry for very long, and wait a long time in between retries.

Create a RunTasksOptions type to hold the parameters, in particular
max task time, and the amount of time we wait when all tasks have
failed.
 2018-06-18 00:04:23 -04:00