kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,302 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1564 Commits

Author SHA1 Message Date
Kubernetes Prow Robot 23a6ce98f8
Merge pull request #6259 from justinsb/rationalize_marshal_code 
Rationalize deserialiation code
 2018-12-21 22:02:51 -08:00
Justin SB 4aa2498203
Rationalize deserialiation code 
Put it all through kopscodecs.Decode, so that we can rewrite the API
group more easily in a subsequent PR.
 2018-12-21 13:59:50 -05:00
Kubernetes Prow Robot 185b55fe3c
Merge pull request #6180 from justinsb/fix_6133 
Don't panic when an etcd cluster is added
 2018-12-21 08:41:33 -08:00
Kubernetes Prow Robot f5ce011fa0
Merge pull request #6242 from justinsb/bulk_fix_typos 
Bulk spelling fixes
 2018-12-21 07:45:14 -08:00
Justin SB 2f2fb9f059
Update apimachinery for k8s 1.12 
Looks like some (slightly) more efficient deepcopy code, which just
needed regeneration.
 2018-12-21 00:55:06 -05:00
Kubernetes Prow Robot 7a629c7743
Merge pull request #5932 from rdrgmnzs/deps_for_1_12 
Update to k8s 1.12 libraries
 2018-12-20 15:42:36 -08:00
Justin SB 26bd75aecb
Bulk spelling fixes 
Experimenting with my own spelling checker, these are the typos it caught.
 2018-12-20 17:43:56 -05:00
Justin Santa Barbara f49aba4147
Consider pending pods to be a validation failure 
Also log the names of the non-ready containers.
 2018-12-20 10:08:40 -05:00
Justin Santa Barbara 65713c2900 Don't panic when an etcd cluster is added 
Not entirely clear what validation we should do here, but we shouldn't panic!

Fix #6133
 2018-12-07 10:11:17 -05:00
Rodrigo Menezes 7b6214577e fix typo 2018-12-07 02:03:05 -08:00
Rodrigo Menezes 7231c20f60 ExperimentalAllowedUnsafeSysctls has moved to AllowedUnsafeSysctls in k8s 1.11 2018-12-07 00:20:32 -08:00
Kubernetes Prow Robot 6dc2fbee29
Merge pull request #6171 from rbtcollins/master 
Add experimental and metrics flags for docker
 2018-12-06 07:38:04 -08:00
Rodrigo Menezes a7903adfe8 Fix for when node and master use the same SG. 2018-12-06 01:05:54 -08:00
Robert Collins f5689c2332 Add experimental and metrics flags for docker 
These are both needed to get metrics out of docker itself.

Signed-Off-By: Robert Collins <robertc@vmware.com>
 2018-12-06 12:52:02 +13:00
Rodrigo Menezes 2b9243ff8c Getting things ready for when we are ready for 1.12 2018-12-04 18:50:17 -08:00
Rich Lees 59e8de3667 Add updated zz_generated.conversion.go files 2018-11-30 09:36:20 +00:00
Rich Lees 15f0fb7187 Enable HPA tolerance configuration pass 1 2018-11-29 15:59:57 +00:00
Justin SB a96a58ac78
Include name of unhealthy component in validation error 
Rolling-update just prints the message, and indeed I think the message
should be self-contained.
 2018-11-27 09:53:40 -05:00
k8s-ci-robot e5a3e495e2
Merge pull request #6112 from justinsb/issue_6024 
Create separate certificate for etcd peer authentication
 2018-11-26 11:42:21 -08:00
Justin Santa Barbara b56457dc05 kops set: support for enableEtcdTLS and enableTLSAuth 
These shortcut commands make it easy to set enableEtcdTLS and
enableTLSAuth.

`kops set cluster cluster.spec.etcdClusters[*].enableEtcdTLS=true`

`kops set cluster cluster.spec.etcdClusters[*].enableTLSAuth=true`
 2018-11-24 22:27:15 -05:00
Justin Santa Barbara 3405ee1382 Create separate certificate for etcd peer authentication 
This works around the (very unusual) etcd changes for validation of
peer certificates by DNS lookup, which were introduced in etcd 3.2.

Issue #6024
 2018-11-24 22:26:52 -05:00
k8s-ci-robot f4012407f8
Merge pull request #4762 from locationlabs/cni-ipvlan-vpc-k8s 
Cni ipvlan vpc k8s support
 2018-11-21 13:43:19 -08:00
SataQiu d6a7299038 fix typos: dnsmaq -> dnsmasq, mutiple -> multiple 2018-11-21 18:47:47 +08:00
k8s-ci-robot 67f1cc8aba
Merge pull request #5586 from fernandocarletti/feature/flags 
Add flag to disable Basic Auth.
 2018-11-18 18:01:05 -08:00
k8s-ci-robot bac89b8de5
Merge pull request #5102 from tmjd/calico-v3-upgrade 
Calico v3 upgrade
 2018-11-13 12:55:18 -08:00
k8s-ci-robot 35f0eaacd7
Merge pull request #6015 from spotinst/fix-lb-attachment 
Spotinst: Skip the creation of LoadBalancerAttachment tasks if Spotinst is enabled
 2018-11-13 03:20:57 -08:00
k8s-ci-robot 892d26eb1f
Merge pull request #6035 from Vlaaaaaaad/etcd-volume-docs 
Document etcd volume options + fail fast if ratio is too high
 2018-11-10 18:00:33 -08:00
k8s-ci-robot 5dce6b1e6f
Merge pull request #5875 from seanson/5700_add_flag_for_no_subnet_tags 
#5700: Add command line flag for disabling Subnet ELB tags
 2018-11-09 13:05:48 -08:00
k8s-ci-robot 73a24b432a
Merge pull request #6025 from spotinst/fix-warn-unmatched 
Spotinst: Do not log unmatched groups as warning messages
 2018-11-09 09:47:10 -08:00
k8s-ci-robot 451b846cc5
Merge pull request #6013 from SataQiu/fix-20181029 
fix some typos
 2018-11-08 22:47:33 -08:00
Erik Stidham 5fc7fbf81e API machinery generated code 2018-11-07 14:00:54 -06:00
Erik Stidham 3da3b415e0 Adding Calico V3 
- Add Calico configuration field to specify MajorVersion
- Add Calico V3 manifest
- Default new installations to Calico V3
  - Set etcd to V3 when calico is specified for networking
- Validate that etcd is V3 when Calico MajorVersion is v3
- Using Calico v3.2.1
 2018-11-07 14:00:54 -06:00
Chris Phillips 43bef0042f gofmt 2018-11-07 08:56:25 -08:00
Chris Phillips 9792c02b48 gofmt 2018-11-07 08:08:44 -08:00
Chris Phillips f0a7fa785c allow overriding subnet tags in the NetworkSpec 2018-11-07 08:08:44 -08:00
Chris Phillips af7377d530 fix use of --networking in create cluster 2018-11-07 08:08:44 -08:00
Chris Phillips 2b9a56f8e6 rename to LyftVPC. Removes all the settings from the NetworkingSpec 2018-11-07 08:08:44 -08:00
Chris Phillips 3ec470b240 apimachinery and updated BUILD.bazel for cni-ipvlan-vpc-k8s 2018-11-07 08:08:13 -08:00
Chris Phillips 3a8078763a Adds support for Lyft's cni-ipvlan-vpc-k8s 
https://github.com/lyft/cni-ipvlan-vpc-k8s

This cni solution is slightly different in that it doesn't require running a daemonset

It requires:
  * a config file in /etc/cni/net.d
  * the binaries in /opt/cni/bin
  * adding the --node-ip param to the kubelet

This code is modeled after the AmazonVPC cni bits.

I've left the setup of the required subnets as an exercise to the reader.
 2018-11-07 08:08:13 -08:00
Vlad Ionescu 098266e875
Fail fast if io2 iops to size ratio is too high 
In AWS the ratio between volume IOPS and volume size must be at most 50,
otherwise volume will fail creating. See
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSVolumeTypes.html,
specifically "_The maximum ratio of provisioned IOPS to requested volume size
(in GiB) is 50:1. For example, a 100 GiB volume can be provisioned with up to
5,000 IOPS._"

This commit adds the option of failing fast when creating a new cluster if the
ratio is higher than 50. Previously kops would send the API request to AWS, fail
and repeat until the timeout was reached.
 2018-11-06 13:08:40 +02:00
Jay Eno e0948842f3
Update iam_builder_node_strict_ecr.json 2018-11-03 01:03:01 -06:00
Jay Eno e5c12bdbef
Update iam_builder_node_strict.json 2018-11-03 01:02:42 -06:00
Jay Eno b0201c5922
Update iam_builder_node_legacy.json 2018-11-03 01:02:24 -06:00
Jay Eno ccfee27165
Update iam_builder_master_strict_ecr.json 2018-11-03 01:01:47 -06:00
Jay Eno d7dab870c9
Update iam_builder_master_legacy.json 2018-11-03 01:01:08 -06:00
Jay Eno 107b079cf6
Add permission to check encryption policy on root bucket. 2018-11-02 23:50:30 -06:00
Jay Eno 7228721439
Update test for new role 2018-11-02 23:46:02 -06:00
Liran Polak 9ccbe5b39a fix: do not log unmatched groups as warnings 2018-10-31 16:50:46 +02:00
Liran Polak 9db3567cac fix: skip the load balancer attachment 2018-10-29 22:28:15 +02:00
SataQiu 77d42267a6 fix some typos 2018-10-29 18:17:45 +08:00