kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
18,026 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

5533 Commits

Author SHA1 Message Date
Ole Markus With 0cd110d723 Bump node termination handler to 1.17.1 2022-08-24 21:52:52 +02:00
Kubernetes Prow Robot 32e2ac55f1
Merge pull request #14164 from torredil/external-csi-driver 
Allow self-managed aws-ebs-csi-driver
 2022-08-24 12:21:49 -07:00
torredil 230ff7eb57 Allow self-managed aws-ebs-csi-driver 
Signed-off-by: torredil <torredil@amazon.com>
 2022-08-24 18:40:27 +00:00
Kubernetes Prow Robot 939a62e424
Merge pull request #14173 from olemarkus/karpenter-16 
Bump karpenter to 0.16
 2022-08-24 06:22:03 -07:00
Kubernetes Prow Robot d57d751204
Merge pull request #14169 from olemarkus/aws-lbc-policy-fix 
Fix policy API version for LBC and NTH
 2022-08-24 01:42:36 -07:00
Kubernetes Prow Robot 2a99db2c2f
Merge pull request #13052 from rifelpet/sa-tags 
Tag IAM Roles with service account info
 2022-08-24 01:42:24 -07:00
Ole Markus With 501e1afdc8 Bump karpenter to 0.16 2022-08-24 10:03:44 +02:00
Ole Markus With d98d96aead Fix policy API version for NTH 2022-08-24 09:08:09 +02:00
Ole Markus With a800a6b607 Fix policy API version for LBC 2022-08-24 09:05:21 +02:00
Kubernetes Prow Robot 50e61eeeef
Merge pull request #14168 from hakman/ssh-key_trim_space 
Trim space around SSH public key
 2022-08-23 23:13:49 -07:00
Ciprian Hacman 407ee77041 Trim space around SSH public key 2022-08-24 08:32:01 +03:00
Peter Rifel f79a126bd2
Add service account tags to IAM Roles 2022-08-23 19:13:51 -05:00
Ole Markus With d471845dce Move merging of kubelet configs to populate instance groups so we have only one place to fetch them 
The kubelet config can be configured in a number of places. Merge them earlier so we only need to check the config in the IG kubeletConfig
 2022-08-20 15:35:15 +02:00
Ole Markus With 8c1bc03f42 Don't write the populated IG spec to state store 2022-08-20 07:15:10 +02:00
Ole Markus With dd578430e8 Create a better image validation test 2022-08-20 07:02:34 +02:00
Kubernetes Prow Robot 8ecd648135
Merge pull request #14147 from olemarkus/create-cluster-tests 
Add more create_cluster integration tests
 2022-08-19 21:43:36 -07:00
Ole Markus With fdb72f2c34 Add create cluster test that includes apiserver 2022-08-19 18:57:43 +02:00
Kubernetes Prow Robot 5aec4d9016
Merge pull request #14142 from olemarkus/karpenter-14 
Bump Karpenter to 0.15 and enable consolidation
 2022-08-19 07:01:53 -07:00
Ole Markus With 29bbfeff70 Bump karpenter to 0.15 and enable consolidation 2022-08-18 20:46:25 +02:00
Ole Markus With 3ace7fd47d Consistent formating of SQS policy to prevent flapping 2022-08-18 19:50:48 +02:00
Ole Markus With 7a48391172 Delete disabled lifecycle hooks and implement disable logic for warmpools 2022-08-18 19:50:48 +02:00
Kubernetes Prow Robot c880da184d
Merge pull request #14137 from olemarkus/bump-cilium-118 
Bump cilium to 1.11.8
 2022-08-17 23:42:37 -07:00
Ole Markus With 6bd4a9ab28 Update karpenter manifest 2022-08-17 20:40:07 +02:00
Kubernetes Prow Robot 7035526204
Merge pull request #14135 from hakman/go-1.19.0 
Update Go to v1.19.0
 2022-08-17 02:40:55 -07:00
Ole Markus With 65aaa8dfe7 Bump cilium to 1.11.8 2022-08-17 08:49:26 +02:00
Ciprian Hacman cb99db0757 Run make goimports 2022-08-17 07:03:33 +03:00
Ciprian Hacman 5e3e9fabd0 Limit GCE network names to 63 chars 2022-08-17 06:37:26 +03:00
Kubernetes Prow Robot f442cc2d0a
Merge pull request #14080 from hakman/etcd-manager_ig 
Create etcd-manager config for each instance group
 2022-08-15 06:58:13 -07:00
Ole Markus With cae87bb208 Add deployment-specific selectors to nth pdb 
If not, when migrating from imds-mode to sqs-mode, the selectors will match the daemonset pods, which doesn't work with pdb
 2022-08-11 07:23:04 +02:00
Kubernetes Prow Robot 18cba87e91
Merge pull request #14111 from sterchelen/fix-pod-annotations 
cilium: fix wrong pod annotations templating
 2022-08-10 06:54:37 -07:00
Nicolas Sterchele 5b58586537
cilium: fix agent pod annotation templating 2022-08-10 14:14:19 +02:00
Kubernetes Prow Robot 53eb302e26
Merge pull request #14109 from olemarkus/karpenter-no-previous-gen 
Don't add previous-gen instances to Karpenter provisioners
 2022-08-10 04:54:30 -07:00
Ole Markus With 25901b8876 Don't add previous-gen instances to Karpenter provisioners 
Previous-gen instances lack a lot of features. For example CCM will fail to update NLBs if these are added to the cluster.
 2022-08-10 13:04:29 +02:00
Ciprian Hacman a32cf690bb Create etcd-manager config for each instance group 2022-08-10 11:04:36 +03:00
Kubernetes Prow Robot 5032055dc6
Merge pull request #14106 from hakman/containerd-1.6.8 
Update containerd to v1.6.8
 2022-08-09 23:18:30 -07:00
Moshe Shitrit a271714512 output of hack/update-expected 2022-08-10 00:05:05 -04:00
Moshe Shitrit a77f9efe24 bump aws cni to 1.11.13 2022-08-10 00:00:18 -04:00
Ciprian Hacman 13a4e1ca46 Update containerd to v1.6.8 2022-08-10 04:31:58 +03:00
Ciprian Hacman 706ae262bf Add hashes for containerd v1.6.7 2022-08-05 10:28:17 +03:00
Ciprian Hacman 11a0f64cd8 Add option to configure runc version for containerd 2022-08-04 09:48:46 +03:00
Kubernetes Prow Robot 9661894261
Merge pull request #13618 from justinsb/kubescheduler_config 
Support kube-scheduler config
 2022-08-03 21:53:46 -07:00
Kubernetes Prow Robot 9ee09fde44
Merge pull request #14087 from olemarkus/hack-cert-manager-crds 
Add back conversion struct to cert-manager CRDs
 2022-08-03 15:53:46 -07:00
justinsb a1ada5cd24 kube-scheduler: skip well-known additional objects 
Not all additional objects are meant to be applied to the cluster; a
few are configured through a file path.  We explicitly handle those
and don't write them to the file where they should be applied.
 2022-08-03 09:51:16 -04:00
justinsb 9bb1d3e114 Configuration file for kube-scheduler 
We generate a kube-scheduler configuration file in the kops CLI, and
nodeup will use it if provided (instead of generating one).

We put the configuration file into the fileAssets.

Users can provide a kube-scheduler configuration in additional
objects, and this will be used as the base configuration (we add the
kubeconfig path).

Issue #13352

Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-08-03 09:51:05 -04:00
Ole Markus With 43c9232ae3 Add back conversion struct to cert-manager CRDs 
A combination of apiserver map handling when using server-side apply, CA injection and resource validation made it impossible for kops to remove this struct. However, kops should claim ownership of all fields so we can remove them all in a future version
 2022-08-03 14:14:58 +02:00
Nicolas Sterchele a23ca78c58
fixup! aws-ebs-csi-driver: remove preStop hook 2022-08-03 07:55:26 +02:00
Nicolas Sterchele a1256cf6e6
aws-ebs-csi-driver: remove preStop hook 
The hook can cause issue on execution, like

```
Exec lifecycle hook ([/bin/sh -c rm -rf
/registration/ebs.csi.aws.com-reg.sock /csi/csi.sock]) for Container
"node-driver-registrar" in Pod
"ebs-csi-node-96jbk_ebs-csi(a82c6d41-bd2b-42dd-b092-e3acd4c43b62)"
failed - error: command '/bin/sh -c rm -rf
/registration/ebs.csi.aws.com-reg.sock /csi/csi.sock' exited with 126: ,
message: "OCI runtime exec failed: exec failed: container_linux.go:370:
starting container process caused: exec: \"/bin/sh\": stat /bin/sh: no
such file or directory: unknown\r\n"
```

Moreover, it has been deleted from upstream driver, see this patch
6e59160eea

Signed-off-by: Nicolas Sterchele <foss@sterchelen.net>
 2022-08-02 14:48:16 +02:00
Ole Markus With 8b9a194cb7 Fix karpenter PDB api version 2022-08-01 21:06:28 +02:00
Ole Markus With cb37d0faf1 Set higher verbosity on some karpenter logging 2022-08-01 21:06:28 +02:00
Ole Markus With 8bcc640452 Make Karpenter respect IG's spec.Subnets 
This will add tag all subnets with the IGs using that subnet

Update docs/operations/karpenter.md

Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
 2022-08-01 21:06:24 +02:00
Ciprian Hacman 4dee7dd9a2
Release 1.25.0-alpha.2 (#14070) 2022-07-29 11:31:11 -07:00
Kubernetes Prow Robot 921eadd04f
Merge pull request #14058 from hakman/hetzner_ssh_keys 
Add multiple SSH keys support for Hetzner
 2022-07-29 07:45:19 -07:00
Kubernetes Prow Robot d7e9cfd9dc
Merge pull request #14057 from hakman/hetzner_wait_lb_address 
Wait for load balancer to be ready for Hetzner
 2022-07-29 07:45:11 -07:00
Ciprian Hacman 1cf3e5f0da Add multiple SSH keys support for Hetzner 2022-07-29 16:20:25 +03:00
Kubernetes Prow Robot 7d40680ec7
Merge pull request #14034 from hakman/hetzner_server_groups 
Enable rolling updates for Hetzner
 2022-07-29 05:59:11 -07:00
Ciprian Hacman 271ce3387a Wait for load balancer to be ready for Hetzner 2022-07-29 14:52:03 +03:00
Peter Rifel 2ec1f2f154 ./hack/update-expected.sh 2022-07-29 08:35:43 +03:00
Peter Rifel 116b887466 Remove namespaces from cluster-scoped resources in CNI manifests 2022-07-29 08:35:43 +03:00
Ciprian Hacman 39b203c265 Enable rolling updates for Hetzner 2022-07-27 15:21:15 +03:00
Kubernetes Prow Robot b13b36a671
Merge pull request #14009 from hakman/calico-3.23.3 
Update Calico and Canal to v3.23.3
 2022-07-25 09:26:35 -07:00
Kubernetes Prow Robot 7277fc0692
Merge pull request #14018 from hakman/hetzner_server_groups 
Add server group management for Hetzner
 2022-07-24 21:00:58 -07:00
Ciprian Hacman a842b13764 Revert to using instance private DNS name to lookup hostname 2022-07-24 08:39:28 +03:00
Ciprian Hacman d3c4a356bd Add server group management for Hetzner 2022-07-22 00:04:53 +03:00
Ciprian Hacman f77534b798 Update Canal to v3.23.3 2022-07-20 10:13:07 +03:00
Ciprian Hacman dc3ff3f3c7 Update Calico to v3.23.3 2022-07-20 09:58:33 +03:00
Kubernetes Prow Robot ea32e12ce7
Merge pull request #14005 from rifelpet/do-csi-420 
Upgrade DO CSI controller to 4.2.0
 2022-07-19 00:08:07 -07:00
Peter Rifel 40268c1342
Upgrade DO CSI driver to 4.2.0 2022-07-18 23:10:48 -06:00
Kubernetes Prow Robot 75e1dc55b9
Merge pull request #14001 from rifelpet/external-dns-namespace 
Add missing namespace to external-dns Service
 2022-07-18 21:52:06 -07:00
Peter Rifel 13a6b1d401
Add missing namespace field to external-dns Service 2022-07-18 21:10:19 -06:00
Kubernetes Prow Robot 02433a6785
Merge pull request #13946 from jonasasx/feature/gce_spot 
Adding GCE SPOT support
 2022-07-16 14:06:53 -07:00
Ciprian Hacman a76fef1b2d Add option to set number of replicas for pod-identity-webhook 2022-07-16 07:23:54 +03:00
Ciprian Hacman ffed39b74f Use only IPv4 for Hetzner servers 2022-07-15 18:08:17 +03:00
Peter Rifel 52a70be55c
Upgrade aws-iam-authenticator to v0.5.9 2022-07-14 16:00:14 -06:00
Ivan Volynkin 329c60cc62 Adding GCE SPOT support 2022-07-14 20:19:50 +03:00
Ciprian Hacman 10f10a00c4 Skip deregistering the instance during rolling update for Spotinst 2022-07-12 10:13:46 +03:00
Peter Rifel 7ffedef3a4
./hack/update-expected.sh 2022-07-11 20:54:30 -06:00
Peter Rifel 234bf01b73
Remove non-functional scheduler annotations 2022-07-11 20:53:37 -06:00
Kubernetes Prow Robot cd0c4bed67
Merge pull request #13965 from rifelpet/awsiam-124 
Fix AWS IAM Authenticator nodeSelector in k8s 1.24
 2022-07-11 19:32:50 -07:00
Peter Rifel 9c7202ce06
Use control-plane node role for AWS IAM Authenticator 2022-07-11 19:10:59 -06:00
Peter Rifel 24bfd9ed51
Upgrade karpenter to 0.13.1 2022-07-05 07:16:45 -05:00
Nicolas Sterchele 73b6ed4150
aws: introduce maximum instance lifetime in cluster 
The maximum instance lifetime is an AWS only feature and specifies the
maximum amount of time (in seconds) that an instance can be in service
before it is terminated and replaced.
A common use case might be a requirement to replace your instances on a
schedule because of internal security policies or external compliance
controls.
 2022-07-04 20:38:33 +02:00
Kubernetes Prow Robot 34490d07cf
Merge pull request #13861 from infonova/os-filter-instance-ports-more-specific 
Be more specific when filtering OS instance ports
 2022-07-04 05:17:34 -07:00
Kubernetes Prow Robot 3245d05771
Merge pull request #13940 from olemarkus/remove-metrics-server-hack 
Revert "Add back the metrics-server 443 port with a new name"
 2022-07-02 04:19:24 -07:00
Ole Markus With 0945b2d9ce Revert "Add back the metrics-server 443 port with a new name" 
This reverts commit 6d0cc427f6.
 2022-07-02 12:35:26 +02:00
Ciprian Hacman 50db0701b5 Run hack/update-expected.sh 2022-07-02 11:38:24 +03:00
Ciprian Hacman 6c9b2c7b7b Bump EBS CSI driver to 1.8.0 2022-07-02 11:36:54 +03:00
Kubernetes Prow Robot a94f09c4a3
Merge pull request #13852 from olemarkus/fix-unset-maxprice 
Fix unsetting ASG max price
 2022-07-01 20:55:29 -07:00
Kubernetes Prow Robot 12681b9c54
Merge pull request #13851 from yojay11717/master 
fix typos
 2022-07-01 20:55:23 -07:00
Kubernetes Prow Robot d1c338ff19
Merge pull request #13917 from ReillyBrogan/reilly/cilium1116 
Update Cilium to 1.11.6
 2022-06-30 11:32:08 -07:00
Kubernetes Prow Robot 7803fee2b9
Merge pull request #13929 from olemarkus/lbc-shield 
Make it possible to enable the shield addon for LBC
 2022-06-30 09:22:07 -07:00
Kubernetes Prow Robot e795063c31
Merge pull request #13890 from infonova/os-only-use-csi-snapshotter-if-hassnapshotctl 
Use csi-snapshotter for OS only when the controller is enabled
 2022-06-30 07:26:09 -07:00
Ole Markus With afd7c60d77 Make it possible to enable the shield addon for LBC 2022-06-30 16:23:08 +02:00
Kubernetes Prow Robot ddafc14ad4
Merge pull request #13926 from olemarkus/irsa-default-region 
Make IRSA webhook configure apps to use regional STS and set the default region on them
 2022-06-30 06:40:20 -07:00
Ole Markus With 84c492b03f Make IRSA webhook configure apps to use regional STS and set the default region on them 2022-06-30 13:50:14 +02:00
Ciprian Hacman 5a8472313f Limit GCE names to 63 chars for various resources 2022-06-30 14:15:17 +03:00
Ciprian Hacman 29e87b6c15 Mount /etc/hosts from host for CoreDNS 2022-06-30 12:01:44 +03:00
ederst 76e7ed6cb7 Use csi-snapshotter for OS only when the controller is enabled 2022-06-30 10:01:52 +02:00
Ciprian Hacman d2e614dd3e Refactor ClusterPrefixedName and ClusterSuffixedName to not return error 2022-06-30 07:59:52 +03:00
Kubernetes Prow Robot e403bee08c
Merge pull request #13901 from hakman/calico_single_manifest 
Use Calico v3.23 for Kubernetes 1.22+
 2022-06-29 13:00:07 -07:00
Reilly Brogan f3a421d600 Update Cilium to 1.11.6 2022-06-29 13:18:21 -05:00