kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
18,026 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

4602 Commits

Author SHA1 Message Date
Kubernetes Prow Robot ba38edc719
Merge pull request #13717 from srikiz/DO-Fix-Machine-ID 
[DigitalOcean] Restart journald service on node startup
 2022-06-07 08:22:56 -07:00
Ole Markus With 0b3f01d363 Drop 1.19 AWS CCM 2022-06-07 15:55:04 +02:00
Ole Markus With 014f3d3e68 Remove CAS 1.19 2022-06-07 15:47:26 +02:00
Ole Markus With 921d1b8ce0 OIDC flags are no longer optional 2022-06-07 15:45:56 +02:00
Ole Markus With e4c10aa124 Rename default etcd variable 2022-06-07 15:38:09 +02:00
srikiz f837ced218 Fix journald for do 
Incorporate review comments

Incorporate review comments

Remove echo
 2022-06-07 14:25:23 +05:30
Ciprian Hacman 169bbd0826 Update containerd to v1.6.6 2022-06-07 09:16:54 +03:00
Ciprian Hacman 8b7711dd5e Update Docker to v20.10.17 2022-06-07 09:16:54 +03:00
Ciprian Hacman f95ef569a1
Release 1.24.0-beta.1 (#13730) 2022-06-04 07:10:20 -07:00
Ole Markus With 71ba1ea4f0 Bump NTH to 1.16.5 2022-05-31 21:12:16 +02:00
Ole Markus With 77ebba84b8 Add support for configuring which metrics cilium will export 2022-05-26 09:33:19 +02:00
Jesse Haka 068e54724f run update expected 2022-05-24 10:18:11 +03:00
Gene Kuo 37beb4b73d Add Support for OVN Load Balancer 
OVN load balancer in OpenStack only supports SOURCE_IP_PORT as load
balancer method. This commits add support for OVN Octavia provider by

- Use SOURCE_IP_PORT as load balancer method when LB provider is OVN
- Disable allowed CIDR when LB provider is OVN
 2022-05-23 23:49:00 +09:00
Ciprian Hacman 97b5795edb
Release 1.24.0-alpha.5 (#13675) 2022-05-21 09:10:00 -07:00
Ole Markus With 6471f2ce0b Bump EBS CSI driver to 1.6.2 2022-05-20 21:46:47 +02:00
Kubernetes Prow Robot 41e61ea3d8
Merge pull request #13662 from olemarkus/nth-bump-124 
Bump NTH to 1.16.4 and add support for scheduled instance change events
 2022-05-19 22:23:13 -07:00
Kubernetes Prow Robot 39f566edbf
Merge pull request #13666 from olemarkus/cilium-bump-124 
Bump Cilium to 1.11.5
 2022-05-18 16:24:14 -07:00
Ole Markus With d08c028747 Bump NTH to 1.16.4 and add support for scheduled instance change events 2022-05-18 21:48:28 +02:00
Ole Markus With 2d50b9ff2c Bump Cilium to 1.11.5 
Since this introduced some backwards breaking RBAC changes, the manifest got forked
 2022-05-18 21:44:19 +02:00
Ole Markus With f849ea01c9 Bump EBS CSI driver to 1.6.1 2022-05-18 20:46:47 +02:00
Kubernetes Prow Robot 7a90131d54
Merge pull request #13567 from HealthEngineAU/cert-manager-nameservers 
Add a nameservers parameter for cert-manager.
 2022-05-18 00:28:53 -07:00
Jim Barber 0fa178106a Add a nameservers parameter for cert-manager 
Provide a way to override the pod's list of DNS nameservers to use so
that split-view DNS zones still work for things like DNS01 challenges.
Without this the DNS TXT records are searched for in the private DNS
zone instead of the public one and the challenge will never succeed.
 2022-05-18 13:23:26 +08:00
Steven E. Harris a1495ac4c8
Allow the AWS LB Controller to use WAFs 
By introducing a few new fields within the Cluster spec's
"awsLoadBalancerController" field, allow users to enable the AWS Load
Balancer Controller to associate WAFs with EC2 Application Load
Balancers (ALBs). It's possible to enable separately use of two kinds
of WAF: WAF Classic and the never version 2-era WAF, the latter of
which bears no distinguishing name.

Retain our default configuration of the AWS Load Balancer Controller
in which this capability remains disabled via command-line flags,
overriding the controller program's enabling of this capability by
default.

Signed-off-by: Steven E. Harris <seh@panix.com>
 2022-05-16 12:20:28 -04:00
justinsb f47d7b2e43 Tweak integration tests to be simpler 
We require that all generated files are in the data directory, so we
can simplify the logic here.
 2022-05-13 15:19:07 -04:00
Ciprian Hacman 361f90e732 Update AWS CCM to 13.05.2022 releases 2022-05-13 17:21:21 +03:00
Kubernetes Prow Robot ab7f721e08
Merge pull request #13639 from hakman/ignore_imagedigest 
Ignore digest for kube-apiserver-healthcheck model test
 2022-05-12 13:17:50 -07:00
Ole Markus With 674b479403 Bump cluster autoscaler image for 1.24 2022-05-12 20:36:55 +02:00
avish42 638ab6c8c7 add annotation support to aws-ebs-csi pods 2022-05-12 22:23:55 +05:30
Ciprian Hacman 1132899e5a Ignore digest for kube-apiserver-healthcheck model test 2022-05-12 19:18:52 +03:00
Ciprian Hacman 5c5793a0c2 Temporally fix Test_RunKubeApiserverBuilder 2022-05-12 11:22:30 +03:00
Ciprian Hacman b048746adf Use fixed staging AWS CCM for k8s 1.24+ 2022-05-12 11:06:23 +03:00
Ciprian Hacman 68469601cd
Release 1.24.0-alpha.4 (#13631) 2022-05-11 02:36:52 -07:00
Kubernetes Prow Robot 6eec5fca0f
Merge pull request #13629 from hakman/hetzner 
Add load balancer support for Hetzner
 2022-05-11 01:44:52 -07:00
Ciprian Hacman fcb6ac3834 Add load balancer support for Hetzner 2022-05-11 09:44:46 +03:00
Peter Rifel ef3a96558f Update Karpenter to v0.10.0 
./hack/update-expected.sh

Use default dns policy for webhook

Fix webhook svc target port

Fix provisioner to only contain launchTemplate
 2022-05-11 07:25:36 +02:00
Kubernetes Prow Robot b9944bea51
Merge pull request #13624 from hakman/muliple_alternate_names 
Allow returning multiple addresses for API
 2022-05-10 08:29:44 -07:00
Ciprian Hacman eeb4252d48 Use latest staging AWS CCM for k8s 1.24+ 2022-05-10 11:43:32 +03:00
Ciprian Hacman 2f8154692f Allow returning multiple addresses for API 2022-05-09 14:14:15 +03:00
Kubernetes Prow Robot 6377b68811
Merge pull request #13572 from hakman/hetzner 
Add initial support for Hetzner Cloud
 2022-05-08 20:57:18 -07:00
Ciprian Hacman b5f14b589b Add initial support for Hetzner Cloud 2022-05-09 06:12:15 +03:00
Peter Rifel 7aae4d11c8
Add IRSA for kube-router 2022-05-05 21:51:01 -05:00
Ciprian Hacman 007b50cc89 Run hack/update-expected.sh 2022-05-03 20:05:38 +03:00
Ciprian Hacman 70718dde32 Update etcd-manager to v3.0.20220503 2022-05-03 20:04:10 +03:00
Ciprian Hacman 668d1809a8 Update containerd to v1.6.4 2022-05-03 19:25:14 +03:00
Kubernetes Prow Robot 89faa0a865
Merge pull request #13590 from hakman/additional_packages 
Add support for installing additional packages
 2022-05-03 07:27:55 -07:00
Ciprian Hacman dfe9c8b937 Fix unexpected type for object metadata when using gossip DNS 2022-05-03 09:40:00 +03:00
Ciprian Hacman 0b095068f3 Add support for installing additional packages 2022-05-03 06:47:44 +03:00
Ole Markus With 6df6857ad5 Bump cilium to 1.11.4 2022-05-02 13:26:00 +02:00
Kubernetes Prow Robot de20f2a0d8
Merge pull request #13588 from hakman/etcd-3.5.4 
Update etcd to v3.5.4
 2022-05-02 03:37:13 -07:00
Kubernetes Prow Robot 4a333c9791
Merge pull request #13582 from rifelpet/revert-163 
Revert containerd v1.6.3 upgrade
 2022-05-02 02:07:14 -07:00
Ciprian Hacman 75fac81273 Run hack/update-expected.sh 2022-05-02 10:33:26 +03:00
Ciprian Hacman 5b4daf85d0 Update etcd to v3.5.4 2022-05-02 10:32:13 +03:00
Ciprian Hacman 80493ed902 Update to etcd-manager 3.0.v3.0.20220417-19-g1140ce25 2022-05-02 10:31:05 +03:00
Peter Rifel 5368c55567
Remove remaining bazel references 2022-05-01 13:56:56 -05:00
liranp 8061b27afd
feat(spot): add support for `rootVolumeEncryption` 2022-05-01 11:28:56 +03:00
Kubernetes Prow Robot 095e00606a
Merge pull request #12327 from olemarkus/server-version 
Make kOps version show server version too
 2022-04-30 13:19:12 -07:00
Kubernetes Prow Robot fe4f1fbfb1
Merge pull request #13580 from olemarkus/bump-nvidia-24 
Bump nvidia device plugin to 0.11 and nvidia driver to 510
 2022-04-30 08:05:12 -07:00
Ole Markus With e622736992 Bump nvidia device plugin to 0.11 and nvidia driver to 510 2022-04-30 16:01:47 +02:00
Ole Markus With 9eca9c882b Add flag to version showing the kops 'server' version 2022-04-30 15:57:46 +02:00
Peter Rifel ada9391887
Revert "Update containerd to v1.6.3" 
This reverts commit 411adb2d74.
 2022-04-30 06:03:41 -05:00
Kubernetes Prow Robot a08f450ef0
Merge pull request #13565 from rifelpet/ebs160 
Upgrade EBS CSI Driver to v1.6.0
 2022-04-30 02:05:13 -07:00
Ciprian Hacman 411adb2d74 Update containerd to v1.6.3 2022-04-30 05:50:19 +03:00
Ciprian Hacman 3e5c506872 Don't digest side-loaded images 2022-04-29 18:26:11 +03:00
Kubernetes Prow Robot e69a4c4206
Merge pull request #13566 from glebiller/aws-authenticator-cpu-requests 
Add NodeTerminationHandler CPU request settings
 2022-04-29 05:15:14 -07:00
Guillaume Le Biller 467424d6a5
Add NodeTerminationHandler cpu resources settings 2022-04-29 10:50:16 +02:00
Kubernetes Prow Robot bcd8148a32
Merge pull request #13570 from rifelpet/sysctls 
Include sysctls in toolbox dump
 2022-04-28 21:25:14 -07:00
Peter Rifel 780d9cc2ea
Fix OIDC Provider cleanup 
A race can occur where an OIDC provider being deleted is in the List results but is not found in the Get request
 2022-04-28 20:27:24 -05:00
Peter Rifel f4e06eafa1
Include sysctls in toolbox dump 2022-04-28 20:22:24 -05:00
Peter Rifel 4d2639095e
Upgrade EBS CSI driver to v1.6.0 2022-04-27 22:17:28 -05:00
Nat Henderson 9b08c4bb51 Enable internal load balancers when running on GCP 
* Add ILBs, broadly following the AWS model.  The following new
capabilities are added for clusters in GCP:
  * Cluster's spec.api.loadBalancer can be set to 'type: internal' on
    GCP.
    * Therefore, GCP can now create:
        * regional backend services
        * regional (non-legacy) healthchecks
        * firewall rules with "internal" load-balancing scheme
        * firewall rules with dot-notation-specified IP addresses
  * Cluster's spec.api.loadBalancer's 'subnets' field functions
    as in the AWS model.

A few incidental changes are included, either because this change
touched the relevant code or because my use case happened to trigger the
issues that are fixed here.

* Cluster's spec.networkID field can be prefixed by project to use
  GCP's common cross-project networking model.
    * The presumption is that all specified subnets belong to this
      network and therefore this project.

* Add missing operation wait on forwarding rule creation.

* Some Terraform output improvements:
    * Permit no-ACL files in GCS buckets in Terraform output.
    * Enable marginally better cross-resource reference in Terraform outputs
    * Add project to network + subnetwork literals in Terraform output.
    * Add terraform output to backend services and health checks.

Testing:
  * Add mocks for backend services and health checks.
  * Add minimal integration test - copied from gce_private and ilb added.
  * Add update cluster goldens.

Co-authored-by: Travis Reid <travis_reid@apple.com>
 2022-04-25 13:31:47 -07:00
Kubernetes Prow Robot 7c3727ed2c
Merge pull request #13549 from hakman/codegen-1.24.0-rc.0 
Update codegen to v1.24.0-rc.0
 2022-04-22 09:50:12 -07:00
Ciprian Hacman 1221b0e178 Run "make apimachinery" 2022-04-22 16:34:40 +03:00
Peter Rifel 0481aebc2d
Trim GCE Subnet and Disk names 2022-04-21 17:40:29 -05:00
Peter Rifel 0eca23e864
Pin AWS CCM image tag for k8s 1.25 
With the k8s 1.24 rc.0 published, our prow jobs that use k8s CI builds are now on k8s 1.25.
To avoid the panic occurring in the latest AWS CCM tag we have to pin 1.25 to the same tag as k8s 1.23 and 1.24
 2022-04-21 06:09:28 -05:00
Steven E. Harris de1ecd844d
Allow cluster autoscaler to get EC2 instance types 
When the cluster autoscaler builds its EC2 instance type catalog
dynamically instead of using only its statically defined set, grant it
the additional IAM permissions required to fetch the instance types
from the AWS API.
 2022-04-20 12:22:28 -04:00
Kubernetes Prow Robot 91bce6627e
Merge pull request #13513 from rifelpet/gcp-fw-rule-length 
Trim GCE firewall rule names to their max length
 2022-04-19 12:38:32 -07:00
Kubernetes Prow Robot 1417a2b8f9
Merge pull request #13511 from heybronson/cas-pod-annotations 
add cluster autoscaler pod annotations
 2022-04-19 10:57:17 -07:00
Ciprian Hacman b8d8f7b34d Revert to using 1.23.0-alpha.0 for AWS CCM 2022-04-19 04:18:23 +03:00
Peter Rifel 0e59715e15
Trim GCE firewall rule names to their max length 2022-04-18 18:40:39 -05:00
Bronson Mirafuentes 89f12ad9d2 add apimachinery generations 2022-04-18 10:50:07 -07:00
Bronson Mirafuentes 7c4f1646e3 add cluster autoscaler pod annotations 2022-04-18 10:32:52 -07:00
Ole Markus With 2ff655a688 Fix control plane validation 2022-04-18 15:32:27 +02:00
Ole Markus With ba544eacce Add control-plane taint as kubetest2 non-blocking taint and fix OS tests 2022-04-18 13:56:13 +02:00
Ole Markus With 8423d49bf3 Add control-plane taint and remove master node-role label 2022-04-18 13:56:13 +02:00
Ole Markus With 2d86420e77 Use Cluster Autoscaler 1.23 for k8s 1.24 
We made this explicitly fail before because there is a risk of us forgetting to bump. I think, however, history has shown this risk is not very real
 2022-04-18 12:39:20 +02:00
Kubernetes Prow Robot 1365bbb1d5
Merge pull request #13506 from olemarkus/ccm-stable 
Bump CCM 1.22 and 1.23 images to stable versions
 2022-04-18 00:04:41 -07:00
Ole Markus With 01d94fa392 Bump CCM 1.22 and 1.23 images to stable versions 2022-04-18 08:17:58 +02:00
Kubernetes Prow Robot 6d264080ed
Merge pull request #13484 from olemarkus/no-bazel-targets 
Remove bazel targets and tools
 2022-04-17 23:16:41 -07:00
justinsb 3027943dd2 Use etcd 3.5.3 instead of 3.5.1 
3.5.3 includes the fixes for the potential etcd 3.5.x corruption
issues.
 2022-04-17 17:04:46 -04:00
Ciprian Hacman 0643271a97 Revert "Enable etcd corruption check as mitigatio of 3.5 corruption issue" 
This reverts commit 6d75f8f9f0.
 2022-04-17 18:34:49 +03:00
justinsb 74397b2a4f Update to etcd-manager 3.0.20220417 
In particular we want to pick up changes addressing the potential
corruption found in 3.5.0 - 3.5.2:

* Use etcd 3.5.3
* Pass the ETCD_EXPERIMENTAL_INITIAL_CORRUPT_CHECK for all 3.5 series
 2022-04-17 10:29:01 -04:00
Ole Markus With ce2e877aeb Remove bazel files from vendor 2022-04-12 13:29:03 +02:00
Ole Markus With bcbeb30d85 Remove explicit dependency on yamlv2 
Update tests/e2e/kubetest2-kops/deployer/template.go

Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-04-10 13:29:21 +02:00
Kubernetes Prow Robot 8120147889
Merge pull request #13326 from johngmyers/move-openstack 
Move Openstack settings to cloudProvider.openstack
 2022-04-10 00:10:05 -07:00
DingGGu 24965f43b2
Run apimachinery for nth excludeLoadBalancers 2022-04-09 17:04:23 +09:00
DingGGu 1b9cf91684
Bump NTH to 1.16.1, use WithDefaultBool in gotemplate, set ExcludeLoadBalancers default true 2022-04-09 17:04:23 +09:00
DingGGu c1042f4a3b
Bump NTH 1.16 and add excludeFromLoadBalancers option 2022-04-09 17:04:16 +09:00
John Gardiner Myers 6a621fcde5 Cleanup OpenStackOptionsBuilder 2022-04-07 14:52:25 -07:00
John Gardiner Myers aff5f587f3 Move Openstack settings to cloudProvider.openstack 2022-04-07 10:04:19 -07:00
Kubernetes Prow Robot 5cbb338528
Merge pull request #13065 from johngmyers/move-azure 
Move Azure settings to cloudProvider.azure
 2022-04-07 09:37:57 -07:00
Kubernetes Prow Robot 107fa6dcfb
Merge pull request #13454 from olemarkus/enable-etcd-corruption-check 
Enable etcd corruption check as mitigatio of 3.5 corruption issue
 2022-04-07 08:50:08 -07:00
Kubernetes Prow Robot f32503e413
Merge pull request #12919 from olemarkus/cilium-11-default 
Use Cilium 1.11 as default
 2022-04-06 04:18:56 -07:00
Ciprian Hacman 42289b7faa Update containerd to v1.6.2 2022-04-04 09:01:10 +03:00
Kubernetes Prow Robot feb66910b1
Merge pull request #13318 from guillomep/allow_to_add_additional_routes 
Possibility to add additional routes in route tables of subnets
 2022-04-03 13:46:09 -07:00
Ole Markus With 6d75f8f9f0 Enable etcd corruption check as mitigatio of 3.5 corruption issue 2022-04-03 14:11:15 +02:00
Kubernetes Prow Robot 7684da6eca
Merge pull request #13396 from anthonyhaussman/feat/tone/PodAnnotations_NodeLocalDNS 
Add possibility to set PodAnnotations into NodeLocalDNS
 2022-04-01 10:56:47 -07:00
Ole Markus With 3d77ab6139 Use Cilium 1.11 as default 2022-03-29 12:58:24 +02:00
Guillaume Perrin 1235b63a0d Only authorize additionalRoute for private subnets 
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 15:49:03 +02:00
Guillaume Perrin db27c00fa0 Apply suggestions from code review 
Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 14:57:21 +02:00
Guillaume Perrin 2b7f9a4aeb Do not add additional routes for shared subnets 
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 14:57:21 +02:00
Guillaume Perrin e501ac62a4 Possibility to add additional routes in route tables of subnets 
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 14:57:21 +02:00
Ole Markus With 93e35adebc update bazel 2022-03-26 18:50:14 +01:00
Ole Markus With e053bf5635 Don't digest images in integration tests 2022-03-26 18:40:21 +01:00
Ole Markus With 0f3e3c793b Create feature flag that is default on for image digests 2022-03-26 18:40:21 +01:00
Ole Markus With e657a1a0f2 Remap images to add digest to them 2022-03-26 18:40:21 +01:00
Anthony Hausman 2b589d5914
FIX: Set default version into `model/components/nodeterminationhandler.go` 2022-03-23 11:56:38 +01:00
Anthony Hausman 308a886557
AWS-NODE-TERMINATION: Add possibility to set a tune image version 
Add the possibility into the AWS `node-termination-handler` addon to set a different image tag version.
It can help to have last fixes if it's needed.
 2022-03-23 10:59:51 +01:00
Anthony Hausman 7752cfc932
Add possibility to set PodAnnotations into NodeLocalDNS 
Annotations is pretty useful when you need third-party tool to add additional behavior for a k8s resource.
Lots of auto-discovery tools are based on this annotations.

This PR add the possibility to set tune pod annotations in the node-local-dns daemonsets.app.
 2022-03-21 16:15:10 +01:00
srikiz b0b7ca8992 Use available regions as per the latest DO documentation 2022-03-20 20:08:24 +05:30
Kubernetes Prow Robot 65694b20b8
Merge pull request #13234 from spotinst/feat-ocean-template 
Spotinst: Ocean as a template for VNGs
 2022-03-19 00:45:08 -07:00
Bronson Mirafuentes e112d81025
Release 1.24.0-alpha.3 (#13372) 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-03-18 21:09:12 -07:00
Ciprian Hacman 30404d64a2 Run hack/update-expected.sh 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-03-18 09:01:59 +02:00
Ciprian Hacman a4ed2b0654 Migrate to registry.k8s.io 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-03-18 08:47:12 +02:00
Kubernetes Prow Robot d751d0f056
Merge pull request #13364 from olemarkus/fix-long-role-names 
Fix long role names
 2022-03-17 23:43:16 -07:00
Kubernetes Prow Robot 1fa84011f8
Merge pull request #13382 from srikiz/DO-Remove-SFO2-region 
[Digital Ocean] Remove sfo2 region from the list of supported DO regions
 2022-03-17 21:45:16 -07:00
Kubernetes Prow Robot 6180ebc491
Merge pull request #13366 from olemarkus/allow-duplicate-taint-keys 
Allow duplicate taint keys
 2022-03-17 20:51:16 -07:00
srikiz f6072832cb Remove sfo2 region from the list of supported DO regions 2022-03-18 00:03:43 +05:30
Kubernetes Prow Robot 6151a11e63
Merge pull request #13369 from olemarkus/lbc-permissions-2 
Add missing permissions to aws lbc for IP targeting
 2022-03-16 06:53:50 -07:00
Ole Markus With b080abcd88 Add missing permissions to aws lbc for IP targeting 2022-03-16 13:28:20 +01:00
Kubernetes Prow Robot 404e411103
Merge pull request #13330 from zetaab/feature/openstackgpu 
Support GPU in OpenStack
 2022-03-16 03:37:50 -07:00
Ole Markus With 1667d10833 Allow taints with unique key,value,effect 2022-03-16 07:18:12 +01:00
Ole Markus With 3fcb84ed6b Truncate the standard role names 2022-03-15 21:31:04 +01:00
Kubernetes Prow Robot aff109f9fc
Merge pull request #13343 from olemarkus/securitycontext 
Add user to container securityContext and remove command
 2022-03-14 02:48:21 -07:00
Jesse Haka a800218840 fixes 2022-03-11 12:01:20 +02:00
Jesse Haka 28caf02878 Support GPU in OpenStack 2022-03-11 09:19:09 +02:00
Ole Markus With 8524c3d320 Bump CCM 1.22 image. Use the 1.23 image for 1.24 due to latest being broken 2022-03-11 08:12:52 +01:00
Ole Markus With d7cb3bb1f7 Add user to container securityContext and remove command 2022-03-07 15:09:51 +01:00
Ole Markus With 982463683d Remove checks that doesn't work when we do not delete the node object 2022-03-06 07:34:52 +01:00
Ole Markus With 2ba9c1670f Only delete node object on GCE 2022-03-06 07:34:52 +01:00
Kubernetes Prow Robot fabfb3f4ab
Merge pull request #13310 from zetaab/fixgce 
Fix GCE service account creation
 2022-03-04 11:02:52 -08:00
Ciprian Hacman 2ff86a6656 Update containerd to v1.6.1 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-03-04 07:51:46 +02:00
John Gardiner Myers 08ed25e7eb Fix capitalization to match Go conventions 2022-03-03 15:18:25 -08:00
John Gardiner Myers 591dd1aba9 Move Azure settings to cloudProvider.azure 2022-03-03 15:18:23 -08:00
John Gardiner Myers cac727c357 Make cloudProvider a struct in v1alpha3 API 2022-03-02 21:59:49 -08:00
John Gardiner Myers 70f7d9bdb2 Use function to get cloud provider from cluster spec 2022-03-02 21:59:47 -08:00
liranp 55de5a31bf
feat(spot): ocean as a template for vngs 2022-03-02 21:37:45 +02:00
Jake 191f54fa2f add support for ed25519 keys 2022-03-02 09:21:05 +00:00
Kubernetes Prow Robot 2419eb7225
Merge pull request #13176 from h3poteto/iss-12436 
Add support to install EKS Pod Identity Webhook
 2022-03-01 05:37:48 -08:00
Jesse Haka 617b439b38 Fix GCE service account creation 2022-03-01 11:59:42 +02:00
Kubernetes Prow Robot 02dc9dd8b3
Merge pull request #13201 from zetaab/removesa 
cleanup GCP Cluster Service Accounts
 2022-02-23 04:24:19 -08:00
Jesse Haka 67beb3fef5 add const 2022-02-23 10:52:08 +02:00
AkiraFukushima e5cf940d53
Add managed-by label to addon pods 2022-02-20 18:33:51 +09:00
AkiraFukushima c8710203ba
Add support to install EKS Pod Identity Webhook 2022-02-20 18:33:50 +09:00
Kubernetes Prow Robot e29591e21e
Merge pull request #13060 from srikiz/DO-Add-New-VPC 
[DigitalOcean] Implement new VPC if network-cidr flag is specified
 2022-02-18 12:44:23 -08:00
Ole Markus With cd247f0b3a Add missing permissions to aws lbc for irsa 2022-02-18 15:26:05 +01:00
Kubernetes Prow Robot 7714964963
Merge pull request #13266 from olemarkus/validate-taints 
Validate taints in IG spec
 2022-02-17 21:44:22 -08:00
Ole Markus With afcfd1b1e8 Prevent populate ig from adding nvidia taint if it has already been set 2022-02-17 10:42:21 +01:00
John Gardiner Myers b41cca38d5 Enable RBN with AWS CCM 1.22.0-alpha.1 2022-02-16 22:21:30 -08:00
Kubernetes Prow Robot 156941d416
Merge pull request #13267 from olemarkus/lbc-124 
Update LBC to 2.4.0
 2022-02-16 22:07:36 -08:00
Ole Markus With 9431c0ab69 Update LBC to 2.4.0 2022-02-16 21:39:31 +01:00
Ole Markus With 61bcdd7d72 Validate taints in IG spec 2022-02-16 20:33:17 +01:00
Ciprian Hacman 843f89aedd Update containerd to v1.6.0 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-16 08:25:40 +02:00
Kubernetes Prow Robot e5f75e03b0
Merge pull request #13199 from zetaab/addhealthcheck 
GCP API health checks
 2022-02-15 17:27:02 -08:00
Kubernetes Prow Robot bffc60202c
Merge pull request #13113 from hierynomus/issue-12925 
Allow PrefixList for sshAccess and kubernetesApiAccess
 2022-02-15 07:20:03 -08:00
Jeroen van Erp 255a0322c9
Allow PrefixList for sshAccess and kubernetesApiAccess 
Signed-off-by: Jeroen van Erp <jeroen@hierynomus.com>
 2022-02-15 14:37:28 +01:00
srikiz 97a3ef1566 Initial changes for vpc 
More changes for do vpc

some more minor updates

Fix PrivateIP check

Bazel fixes

Minor changes for vpc listing

Minor fixes for DO VPC

Add delete vpc logic

More fixes for vpc usage with gossip based clusters

Fix minor comments in code

Fix mock DO interface to use missing functions

Another fix for mock cloud do for missing interface function

incorporate review comments

incorporate review comments
 2022-02-15 17:07:09 +05:30
Jiahui Feng 84dc7ca908 generated: make apimachinery && make crds 2022-02-14 10:49:45 -08:00
Jiahui Feng 1c030508af add Controllers to ccm config. 2022-02-14 10:43:05 -08:00
Ciprian Hacman 5746093297 Install contained from the release package 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-14 11:27:26 +02:00
Ole Markus With 8b71cedccc Do not enable graceful shutdown if k8s version < 1.21 2022-02-12 19:13:52 +01:00
Ole Markus With 65c3a63d5d KCM should not run with leader migraton when aws ccm is enabled 
AWS CCM is enabled by default in k8s 1.24, and KCM builder is now aware of that
 2022-02-12 11:35:30 +01:00
Ole Markus With 2625264fe5 Add support for graceful node shutdown 
Update docs/cluster_spec.md

Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
 2022-02-11 20:51:02 +01:00
Kubernetes Prow Robot 95fc0ac5b8
Merge pull request #13212 from olemarkus/irsa-119 
Fix irsa for k8s < 1.20
 2022-02-09 12:25:49 -08:00
Ole Markus With d7944b1021 Refactor serviceaccountissuerdiscovery validation 2022-02-09 20:15:12 +01:00
Ole Markus With 74e9a6cd18 Fix irsa for k8s < 1.20 2022-02-09 08:52:06 +01:00
Kubernetes Prow Robot 147052818b
Merge pull request #13203 from olemarkus/csi-featuregates 
Fix CSI migration feature gates
 2022-02-07 21:36:53 -08:00
Jiahui Feng b1dde24433 always enable Leader Election 
for openstack CCM.
 2022-02-07 15:31:21 -08:00
Ciprian Hacman f6d2502b85 Update containerd to v1.6.0-rc.3 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-08 20:03:10 +02:00
Jiahui Feng c57ed0c053 fix KCM logLevel not honored. 2022-02-07 14:34:35 -08:00
Jesse Haka 3e505a559e add missing import 2022-02-07 21:35:01 +02:00
Jesse Haka 180c3ae475
Update pkg/model/gcemodel/api_loadbalancer.go 
Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
 2022-02-07 21:32:05 +02:00
Ole Markus With 6f6196c2b9 Remove snapshot controller dependency on ebs csi driver 
There is no such dependency, and snapshot controller works on other cloud providers and with a host of other CSI drivers
 2022-02-07 15:51:37 +01:00
Kubernetes Prow Robot 70f3a2ec7f
Merge pull request #13187 from jiahuif-forks/feature/enable-leader-election 
Always enable Leader Election for cloud-controller-manager
 2022-02-05 06:30:50 -08:00
Jesse Haka 0a19533410 remove GCE Cluster Service Accounts 2022-02-04 16:46:27 +02:00
Ole Markus With 66e3202f34 Fix CSI migration feature gates 
We had a bug for KCM feature gate, and the scheuler and apiserver gate was missing entirely.
 2022-02-04 15:29:28 +01:00
Kubernetes Prow Robot 2fbc3e0671
Merge pull request #13198 from hakman/containerd-1.6.0-rc.2 
Update containerd to v1.6.0-rc.2
 2022-02-03 18:28:11 -08:00
Jesse Haka d3fac0c1be GCP API health checks 2022-02-03 21:02:21 +02:00
Ciprian Hacman b961e03296 Update containerd to v1.6.0-rc.2 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-03 19:31:16 +02:00
justinsb 4f89c2e689 Update expected test output for etcd-manager bump 2022-02-03 11:21:54 -05:00
justinsb 97b7b90226 Update to etcd-manager v3.0.20220203 
Relevant changes:

* Only emit GOMAXPROCS if non-zero [justinsb](https://github.com/justinsb) [284](https://github.com/kubernetes-sigs/etcdadm/pull/284)
* Set ETCD_STRICT_RECONFIG_CHECK [justinsb](https://github.com/justinsb) [286](https://github.com/kubernetes-sigs/etcdadm/pull/286)
* environment: ignore empty lines when converting to map [justinsb](https://github.com/justinsb) [285](https://github.com/kubernetes-sigs/etcdadm/pull/285)
* Fix ipv6 detection [olemarkus](https://github.com/olemarkus) [291](https://github.com/kubernetes-sigs/etcdadm/pull/291)
* Test for nil in to not found check [olemarkus](https://github.com/olemarkus) [292](https://github.com/kubernetes-sigs/etcdadm/pull/292)
 2022-02-03 11:21:09 -05:00
Ole Markus With 6327cc378f Fix etcd-manager for ipv6 2022-02-03 12:59:26 +01:00
Jiahui Feng 0dfa8614b1 always enable Leader Election 
for GCP cloud-controller-manager
 2022-02-02 11:40:57 -08:00
Jiahui Feng d4b5742b5d always enable Leader Election 
for AWS cloud-controller-manager
 2022-02-02 11:40:34 -08:00
Ole Markus With af4d69cab3 Use etcd-manager pre-release until final release has been cut 2022-02-02 13:10:32 +01:00
Kubernetes Prow Robot d6cb49747c
Merge pull request #13158 from olemarkus/bump-etcd-manager 
Bump etcd-manager to v3.0.20220128
 2022-01-30 00:26:23 -08:00
Ole Markus With 994588c0fd Bump etcd-manager to v3.0.20220128 2022-01-30 07:13:32 +01:00
Kubernetes Prow Robot 9023720a08
Merge pull request #13103 from heybronson/set-eviction-timeout 
add node-drain-timeout flag to rolling-update
 2022-01-28 01:40:31 -08:00
Kubernetes Prow Robot 3b8727de06
Merge pull request #13143 from olemarkus/ccm-bump-123 
Bump CCM images
 2022-01-21 07:45:59 -08:00
Kubernetes Prow Robot c9ad543dea
Merge pull request #13096 from zetaab/poolmonitor 
OpenStack - Add loadbalancer pool monitor to API LB
 2022-01-21 04:49:58 -08:00
Ole Markus With 71a144136e Bump CCM images 2022-01-21 13:24:40 +01:00