kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
20,119 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

353 Commits

Author SHA1 Message Date
Kubernetes Prow Robot 2d0f2387b0
Merge pull request #15721 from rifelpet/eb 
Rename eventbridge rule in toolbox dump output
 2023-07-30 08:46:00 -07:00
Peter Rifel e0c3b8cd36
Rename eventbridge rule in toolbox dump output 
`eventbridge` itself is too generic given there are many resource types within the eventbridge service
 2023-07-30 09:25:40 -05:00
Ciprian Hacman 10fa740e3d azure: Add support for application security groups 2023-07-30 14:40:14 +03:00
justinsb 3cce79d4e4 gce: Refactor resource labeling 
Create a more strongly-typed label object and use it when labeling
cluster resources.
 2023-07-28 23:48:41 -04:00
Ciprian Hacman 5be7a26211 azure: Use k8s.io/utils/set.Set[string] 2023-07-17 05:36:12 +03:00
Ciprian Hacman 704daec524 azure: Move ID parsing from `azuretasks` to `azure` utils 2023-07-11 12:55:48 +03:00
Ciprian Hacman 344d5b36c8 azure: Add mode dependency logic to deletion 2023-07-11 12:24:10 +03:00
Ciprian Hacman 4fe84705a5 azure: Add support for network security groups 2023-07-01 10:06:25 +03:00
Leïla MARABESE 62e3495b1a scaleway dns provider + tests 2023-06-19 11:40:08 +02:00
John Gardiner Myers 1e7576c9c5 Upgrade external-dns to v0.13.5 2023-05-30 17:47:59 -07:00
Jesse Haka e7d27bbf15 openstack designate changes 2023-05-17 20:24:01 +03:00
justinsb 1ad3f6012c hetzner: add dependency logic to deletion 
This avoids warnings about deleting e.g. the volume while it is still
attached to a server.

Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
 2023-02-13 08:55:12 -05:00
Kubernetes Prow Robot 24a83acb66
Merge pull request #15128 from justinsb/do_no_empty_ips 
digitalocean: don't print empty IP addresses
 2023-02-11 17:49:31 -08:00
justinsb c7ed41ca70 digitalocean: don't print empty IP addresses 
Now we have some IPv6 support, we were printing an empty address when
machines did not have an IPv6 address.
 2023-02-11 13:25:43 -05:00
justinsb 312ee7fefc hetzner: support toolbox dump of instances 
Makes for easier debugging.
 2023-02-11 10:55:54 -05:00
Leïla MARABESE 0fca23addd list and delete load-balancers 2023-01-26 17:12:46 +01:00
Kubernetes Prow Robot 0f5fc06cec
Merge pull request #14771 from johngmyers/sqs-rebalance 
Don't drain on rebalance recommendations in SQS mode unless configured
 2022-12-17 07:15:42 -08:00
Leïla MARABESE ef8648e12c scaleway: list and delete resources 2022-12-15 14:29:29 +01:00
John Gardiner Myers 55b46073b7 Don't drain on rebalance recommendations in SQS mode unless configured 2022-12-11 18:21:43 -08:00
Ciprian Hacman 141f6065f9 Don't pass region to ListResources 2022-12-05 09:40:38 +02:00
Ciprian Hacman f7d434ee2c Refactor ListResources to not require passing the Cluster object 2022-12-05 09:10:58 +02:00
Kubernetes Prow Robot 2e231fcbd9
Merge pull request #14704 from hakman/owners_update 
Update OWNERS files
 2022-12-02 10:01:53 -08:00
Ciprian Hacman 4868c2bfaf aws: Skip Route53 cleanup for clusters without DNS 2022-12-02 10:57:37 +02:00
Ciprian Hacman 4091fc00d6 Update OWNERS files 2022-12-02 07:19:59 +02:00
John Gardiner Myers 87925bf0ca Remove CloudFormation support 2022-11-22 21:02:50 -08:00
John Gardiner Myers d39ba74bd7 Change the control-plane IG role to "ControlPlane" in v1alpha3 API 2022-11-22 17:05:29 -08:00
Ciprian Hacman d29812fc6e Replace fi.Bool/Float*/Int*/StringValue() with fi.ValueOf 2022-11-19 03:45:23 +02:00
Ciprian Hacman 8f79c9bd68 Replace fi.Bool/Float*/Int*/String() with fi.PtrTo() 2022-11-19 03:45:22 +02:00
John Gardiner Myers 71017f0307 Use bastion to dump private instances 2022-11-09 21:34:04 -08:00
Ciprian Hacman 35f12c12b1 azure: Update clients to latest (previous) versions 2022-11-08 19:47:17 +02:00
John Gardiner Myers 8675336725 Also dump logs from IPv6 nodes 2022-11-05 16:10:53 -07:00
John Gardiner Myers eb69f8ac60 Remove well known account aliases for unsupported distros 2022-11-01 16:20:27 -07:00
John Gardiner Myers 423a04900f Fix typo 2022-10-27 11:07:17 -07:00
Ciprian Hacman 85026145a1 Always infer gossip DNS from cluster name 2022-10-02 12:54:37 +03:00
justinsb 90a484f049 AWS IAM Role listing: don't ignore "other" errors 
If the error was an AWS error, but not one of the recognized ones, we
ignored it.
 2022-09-01 07:57:03 -04:00
Ole Markus With eb003a19b1 Fix bugs and typo in iam resource deletion logic 2022-08-21 20:01:20 +02:00
Ole Markus With 084ecac2bb Fix no such entity check for iam profiles and roles 2022-08-21 07:29:30 +02:00
Ole Markus With 578e27bb5f Ignore entities not found when deleting IAM roles and profiles 2022-08-20 18:58:04 +02:00
Ole Markus With 535f597bce Rely on tags alone when deleting instance profiles 2022-08-20 10:25:49 +02:00
Ole Markus With e01b233b76 Warn instead of failure if we cannot read IAM role tags 
Since we now try to get tags for all roles in the account, we may encounter roles we are not allowed to get e.g if there is an SCP or similar with explicit deny.
 2022-08-20 09:53:10 +02:00
Ole Markus With 09b604867d Don't skip roles that don't have cluster name prefix 
This should plug the IAM roles leak. It probably a leftover from when roles did not have tags and we relied on the name of the role instead.
 2022-08-20 09:07:15 +02:00
Ole Markus With 8e7a50346b Add iam role deletion test 2022-08-20 09:07:15 +02:00
Ciprian Hacman 5e3e9fabd0 Limit GCE network names to 63 chars 2022-08-17 06:37:26 +03:00
Ciprian Hacman d2e614dd3e Refactor ClusterPrefixedName and ClusterSuffixedName to not return error 2022-06-30 07:59:52 +03:00
Ciprian Hacman bdb1f509f0 Fix cleanup of firewall rules that contain the cluster name hash 2022-06-29 06:30:14 +03:00
Ciprian Hacman 377e26d407 Clean-up firewall rules that contain targets with the cluster name hash 2022-06-25 10:52:30 +03:00
Ciprian Hacman d34e0fd1e0 Fix GCE resource tracking 2022-06-23 19:50:39 +03:00
Ciprian Hacman b5f14b589b Add initial support for Hetzner Cloud 2022-05-09 06:12:15 +03:00
Peter Rifel 780d9cc2ea
Fix OIDC Provider cleanup 
A race can occur where an OIDC provider being deleted is in the List results but is not found in the Get request
 2022-04-28 20:27:24 -05:00
Nat Henderson 9b08c4bb51 Enable internal load balancers when running on GCP 
* Add ILBs, broadly following the AWS model.  The following new
capabilities are added for clusters in GCP:
  * Cluster's spec.api.loadBalancer can be set to 'type: internal' on
    GCP.
    * Therefore, GCP can now create:
        * regional backend services
        * regional (non-legacy) healthchecks
        * firewall rules with "internal" load-balancing scheme
        * firewall rules with dot-notation-specified IP addresses
  * Cluster's spec.api.loadBalancer's 'subnets' field functions
    as in the AWS model.

A few incidental changes are included, either because this change
touched the relevant code or because my use case happened to trigger the
issues that are fixed here.

* Cluster's spec.networkID field can be prefixed by project to use
  GCP's common cross-project networking model.
    * The presumption is that all specified subnets belong to this
      network and therefore this project.

* Add missing operation wait on forwarding rule creation.

* Some Terraform output improvements:
    * Permit no-ACL files in GCS buckets in Terraform output.
    * Enable marginally better cross-resource reference in Terraform outputs
    * Add project to network + subnetwork literals in Terraform output.
    * Add terraform output to backend services and health checks.

Testing:
  * Add mocks for backend services and health checks.
  * Add minimal integration test - copied from gce_private and ilb added.
  * Add update cluster goldens.

Co-authored-by: Travis Reid <travis_reid@apple.com>
 2022-04-25 13:31:47 -07:00