kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,561 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

175 Commits

Author SHA1 Message Date
Ole Markus With b9212f85ad Add addon for aws node termination handler 2020-09-17 21:09:28 +02:00
Adam Smith 2fb1a4ecd2 Support ChainInsertMode config option for Calico Networking 2020-09-16 10:38:45 +01:00
Ciprian Hacman 0eb626fcdd Release 1.19.0-alpha.4 2020-09-16 11:37:38 +03:00
Ole Markus With d3ae52ce4b Remove template function test to make bazel happy 
This test is sort of redundant when we have integration tests etc covering rendering of these templates
 2020-09-15 20:43:21 +02:00
Ole Markus With 926a0bc7c1 Block external CCM for k8s less than 1.13 2020-09-15 15:51:23 +02:00
Jesse Haka b465466993 recompile bindata 2020-09-15 15:03:38 +03:00
Kubernetes Prow Robot 58092b5666
Merge pull request #9925 from olemarkus/cas-fixes 
Add missing flags to cluster autoscaler template
 2020-09-13 00:58:57 -07:00
Ole Markus With 2b5950c24c Add missing flags to template 2020-09-12 08:24:29 +02:00
Andreas Strikos 93c44d867a Remove force_tcp flag for nodelocalcache dot zone 
Forcing all DNS communication go through TCP can lead to increased
latency and slower DNS responses since a lot of upstream DNS
servers are not optimized for TCP traffic.
An example is AWS's VPC DNS server that sending all the DNS traffic
through TCP cause it to increase the latencies for this requests.
The kubernetes version has already changed this configmap to skip
force_tcp flag for the . zone, so it makes sense to follow their
example.
Reference https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L100
 2020-09-11 09:58:27 +02:00
Kubernetes Prow Robot 8a07275bbf
Merge pull request #9901 from commixon/nodelocalcache-configure-resources 
Nodelocalcache configure resources
 2020-09-09 09:19:08 -07:00
Chris Loukas 65610dbcee Update NodeLocalDNSConfig with Mem/CPU requests 
Add NodeLocalDNS.CPURequest and NodeLocalDNS.MemoryRequest to
configure resource requests.

If not explicitly set, fall back to 25m and 5Mi
 2020-09-09 18:40:14 +03:00
Ciprian Hacman 0357d33ff6 Update Calico to v3.16.1 2020-09-09 06:37:27 +03:00
Kubernetes Prow Robot d8b7310c69
Merge pull request #9787 from olemarkus/cas 
Implement cluster autoscaler as bootstrap addon
 2020-09-04 22:37:40 -07:00
Ole Markus With a0e9fab104 Implement cluster autoscaler as bootstrap addon 
Use provider-agnostic node definition for cas instead of aws auto-discovery

Validate clusterAutoscalerSpec

Add spec documentation

Add cas docs

Make CRDs

Apply suggestions from code review

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>

Add enabled flag to cas config

Apply suggestions from code review

Co-authored-by: Guy Templeton <guyjtempleton@googlemail.com>

Add support for custom cas image

Support more k8s versions

Use full image names
 2020-09-03 09:52:13 +02:00
Ciprian Hacman 7a24b829aa Use calico/cni with fix for node name issue 2020-09-02 18:44:20 +03:00
Ciprian Hacman 1006f9082d Update Calico to v3.16.0 for k8s 1.16+ 2020-09-02 05:48:49 +03:00
Jesse Haka 92bc5689f3 regen bindata 2020-08-31 22:21:52 +03:00
liranp b10f07fefc
feat(spot): upgrade the controller (v1.0.64) 2020-08-31 19:59:15 +03:00
Justin SB 786423f617 Expose JWKS via a feature-flag 
When the PublicJWKS feature-flag is set, we expose the apiserver JWKS
document publicly (including enabling anonymous access).  This is a
stepping stone to a more hardened configuration where we copy the JWKS
document to S3/GCS/etc.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-08-30 10:15:11 -04:00
ozdanborne 6ae4337249 remove nodeAffinity from typha 2020-08-27 12:59:08 -04:00
MoShitrit db0111acfe Upgrade AWS VPC CNI to 1.7.1 2020-08-26 13:54:01 -04:00
Kubernetes Prow Robot b00f8049b6
Merge pull request #9808 from hakman/kope-to-k8s.gcr.io 
Pull images from k8s.gcr.io/kops instead of docker.io/kope
 2020-08-26 07:18:05 -07:00
Kubernetes Prow Robot 154335e758
Merge pull request #9818 from hakman/kube-router-1.0.1 
Update kube-router to v1.0.1
 2020-08-26 01:46:03 -07:00
Ciprian Hacman fd62ca9e42 Update kube-router to v1.0.1 2020-08-26 10:53:22 +03:00
Ciprian Hacman eb218cdc1a Update Calico to v3.15.2 for k8s 1.16+ 2020-08-26 10:01:22 +03:00
Ciprian Hacman a4ff90205a Pull images from k8s.gcr.io/kops instead of docker.io/kope 2020-08-25 08:04:36 +03:00
Ciprian Hacman 2d61ab0876 Bump kops to v1.19.0-alpha.3 2020-08-23 12:07:44 +03:00
MoShitrit 9bd7a350eb Upgrade AWS VPC CNI to 1.7.0 2020-08-19 21:51:22 -04:00
Ciprian Hacman 5e8bfa06b6 Update Weave Net to v2.7.0 2020-08-19 19:42:02 +03:00
Kubernetes Prow Robot 655c424ded
Merge pull request #9755 from WarpRat/9750 
Fix backwards compatibility when backend mode isn't set
 2020-08-17 06:28:18 -07:00
Robert Russell 1981c56f67 Fix backwards compatibility when backend mode isnt set 2020-08-16 23:05:04 -07:00
John Gardiner Myers 00c60ddff6 Add server code to kops-controller 2020-08-15 09:46:30 -07:00
Kubernetes Prow Robot e2e5b00620
Merge pull request #9689 from secoya/master 
Support for using hostPort when using kube-router
 2020-08-14 01:08:22 -07:00
Anders Ingemann 905fac677b
kube-router: Enable BGP graceful restart 2020-08-14 09:29:51 +02:00
Ciprian Hacman baac575df2 Update cluster-proportional-autoscaler to v1.8.3 2020-08-13 07:44:19 +03:00
Peter Rifel 008c22d9c0
Upgrade AWS VPC CNI provider to 1.6.4 
This adds support for arm64
 2020-08-11 20:41:02 -05:00
Anders Ingemann 154d8220ba
Support for using hostPort when using kube-router 2020-08-11 10:52:07 +02:00
Ole Markus With 25d98796e2 Add cinder plugin 2020-08-11 10:15:12 +02:00
Robert Russell 6e5544f615 Allow configurable backend modes for aws-iam-authenticator 2020-08-06 21:37:55 -07:00
liranp 4990b71185
feat(spot): upgrade the controller (v1.0.63) 2020-08-06 15:00:04 +03:00
Ciprian Hacman 373510e01d Move cluster-proportional-autoscaler to worker nodes 2020-08-04 08:27:07 +03:00
John Gardiner Myers dc222a06b1 Upgrade cluster-proportional-autoscaler to multi-arch image 2020-08-03 21:39:41 -07:00
Ciprian Hacman 1c6597e177 Prefer nodes with "master" role for Canal Typha pods 2020-08-01 08:30:52 +03:00
Kubernetes Prow Robot 0bd76b5a76
Merge pull request #9656 from hakman/calico-3.15.1 
Update Calico to v3.15.1 for k8s 1.16+
 2020-07-31 06:39:11 -07:00
Ciprian Hacman 89b6d8f20a Update Calico to v3.15.1 for k8s 1.16+ 2020-07-31 15:54:53 +03:00
Justin SB c64abd4301 Release 1.19.0-alpha.2 2020-07-31 07:59:05 -04:00
Steven E. Harris 9a5e54699f Calico: upgrade "k8s-ec2-srcdst" to version v0.3.0 
Upgrading the "k8s-ec2-srcdst" controller to this latest version
allows it to work correctly with the objects containing the new
"metadata.managedFields" field introduced in Kubernetes version
1.18.0.

The previous container image versions used a version of the
"client-go" library that was too old to consume these fields
correctly, causing the controller to fail repeatedly when trying to
read Node objects retrieved from the Kubernetes API server.
 2020-07-29 09:30:16 -04:00
liranp a9f5ef8b9a
feat(spot): upgrade the controller (v1.0.62) 2020-07-28 11:08:45 +03:00
Ciprian Hacman 3336d7b309 Prefer nodes with "master" role for Calico Typha pods 2020-07-22 11:28:01 +03:00
Kubernetes Prow Robot 1a903f6fe8
Merge pull request #9547 from johngmyers/kuberouter-toleration 
Widen the tolerations of kuberouter
 2020-07-11 14:09:21 -07:00
John Gardiner Myers 53e07476df Widen the tolerations of kuberouter 2020-07-09 22:25:59 -07:00
John Gardiner Myers 9b978b5c30 Simplify rules for making bindata.go 2020-07-09 20:10:04 -07:00
Kubernetes Prow Robot 04ec3ddd13
Merge pull request #8991 from rdrgmnzs/aws-authenticator-update 
Add healthcheck to aws-iam-authenticator
 2020-07-09 19:28:35 -07:00
Kubernetes Prow Robot 60993a4d74
Merge pull request #9541 from rifelpet/coredns-170 
Update CoreDNS to v1.7.0 - Take 2
 2020-07-09 12:46:33 -07:00
Rodrigo Menezes e20f3ba0bc Add healthcheck 2020-07-09 12:23:37 -07:00
Sandeep Rajan af4d28db16
update expected test 2020-07-09 14:05:08 -05:00
Peter Rifel eae3fd8fc3
Update AWS IAM Authenticator to 0.5.1 2020-07-09 11:41:28 -05:00
Kubernetes Prow Robot 69d774c524
Merge pull request #9521 from hakman/flag_missing 
Fix KubeDNS missing resourceVersion
 2020-07-08 18:00:35 -07:00
Ciprian Hacman edfabfef87 Fix KubeDNS missing resourceVersion - update channel version 2020-07-08 08:36:39 +03:00
Ciprian Hacman 91074906cf Update kube-router to v1.0.0 2020-07-07 06:58:49 +03:00
Justin SB 591626af3c Release 1.19.0-alpha.1 2020-07-04 21:46:14 -04:00
Ole Markus With 263172caac Use new templates for cilium 1.8 2020-07-03 07:56:35 +02:00
Kubernetes Prow Robot 2b7c4089d6
Merge pull request #9462 from hakman/update-kube-dns 
Update KubeDNS to v1.15.13
 2020-06-30 13:54:07 -07:00
Ciprian Hacman b48c2c373f Update KubeDNS to v1.15.13 2020-06-30 12:10:51 +03:00
Ciprian Hacman 4ca7385081 Update Calico to v3.15.0 for k8s 1.16+ 2020-06-30 09:04:51 +03:00
liranp 8501747661
feat(spot): upgrade the controller (v1.0.61) 2020-06-28 17:02:44 +03:00
Ole Markus With 51235b2edc Deploy cilium etcd credentials if the cilium cluster exists 2020-06-27 07:11:19 +02:00
Kubernetes Prow Robot 909117a409
Merge pull request #9431 from olemarkus/arm64-fix-dns-1.13 
Fix dns selectors for older k8s
 2020-06-23 08:43:41 -07:00
Ole Markus With a9300601c2 Fix dns selectors for older k8s 2020-06-23 12:19:23 +02:00
Kubernetes Prow Robot 9708057692
Merge pull request #9404 from vgunapati/dns-controller-fix 
Fix: dns-controller: 3999 port address already in use
 2020-06-22 18:31:41 -07:00
Author Name deaeba1e57
Fix: dns-controller: 3999 port address already in use 2020-06-22 17:54:03 -07:00
Ole Markus With 7b95edc507 Make dns pods work on arm64 clusters 
* Use multiarch where possible. Remove hardcoded use of amd64-only images.
 * Remove Arch templating function as an approach using this will not
   work anyway
 * No multiarch version of dns autoscaler, so force this one to run on
   master for now.
 2020-06-21 20:32:27 +02:00
John Gardiner Myers 6fa80b5442 Refactor lyft config file to Go code 2020-06-19 23:30:52 -07:00
MoShitrit 1c1044bd69 Upgrade Amazon VPC CNI to 1.6.3 2020-06-19 16:23:18 -04:00
Kubernetes Prow Robot eb39ab7349
Merge pull request #9355 from johngmyers/move-port 
Move host-network services off of port 8080
 2020-06-16 09:10:04 -07:00
Kubernetes Prow Robot 39db604e0c
Merge pull request #9295 from olemarkus/cilium-component 
Validate cilium version
 2020-06-15 10:21:56 -07:00
John Gardiner Myers 5babf00646 Move node-local-dns healthcheck to port 3989 2020-06-12 22:00:15 -07:00
Josh Branham 997f32122d Update expected 2020-06-11 13:12:03 -04:00
Ciprian Hacman df1302887e Update Weave Net to 2.6.5 2020-06-11 09:09:59 +03:00
Ole Markus With e09365b6c2 Validate cilium version 2020-06-11 07:38:14 +02:00
Ole Markus With 39751cfe63 Set cilium defaults in code 2020-06-11 07:38:13 +02:00
Ciprian Hacman c4d10a1bb0 Update Weave for CVE-2020-13597 2020-06-06 13:19:49 +03:00
John Gardiner Myers f9b0415093 Update generated files 2020-06-04 12:13:49 -07:00
Kubernetes Prow Robot 5cc1b5ad8e
Merge pull request #9268 from hakman/calico-CVE-2020-13597 
Update Calico and Canal for CVE-2020-13597
 2020-06-04 04:03:14 -07:00
Kubernetes Prow Robot c6dcaa8199
Merge pull request #9154 from MoShitrit/issue-9031 
Add support for encryption in Cilium
 2020-06-04 03:11:15 -07:00
Ciprian Hacman b1ee578e5c Update Calico and Canal for CVE-2020-13597 2020-06-04 11:40:34 +03:00
Kubernetes Prow Robot c8674f23a0
Merge pull request #9253 from olemarkus/cilium-ipv4 
Don't make it possible to toggle ipv4/6. We only support ipv4 anyway
 2020-06-03 14:02:43 -07:00
Kubernetes Prow Robot 4fe5ad03f8
Merge pull request #9255 from olemarkus/romana-remove 
Remove romana support
 2020-06-03 13:24:59 -07:00
Kubernetes Prow Robot 11928bf327
Merge pull request #9213 from johngmyers/refactor-update 
Refactor Debian automatic upgrades to Go code
 2020-06-03 13:24:46 -07:00
Kubernetes Prow Robot 4ef6bbe229
Merge pull request #9175 from mtl-wgtwo/calico-ip-detection-method 
Enable configuration of the calico IP_AUTODETECTION_METHOD  and IP6_AUTODETECTION_METHOD
 2020-06-03 06:24:18 -07:00
Ole Markus With 991549a5f4 Remove support for Romana 2020-06-03 08:23:53 +02:00
Ole Markus With 972d7a3509 Don't make it possible to toggle ipv4/6. We only support ipv4 anyway 2020-06-03 06:58:13 +02:00
Srikanth 51f9a4a0a8 update RBAC for DO CCM 2020-06-02 19:08:58 +05:30
John Gardiner Myers 0ed8afb904 Refactor Debian automatic upgrades to Go code 2020-05-30 15:10:52 -07:00
MoShitrit 90dfe39396 Upgrde amazon vpc cni to 1.6.2 2020-05-30 00:07:28 -04:00
Matt Long c00464f11d Update crds, apis, models. Add limited field validation 2020-05-27 15:24:01 +02:00
Timo Reimann b9c9c7a143 Update DigitalOcean cloud-controller-manager to v0.1.24 
This changes bumps DigitalOcean's cloud-controller-manager to version
0.1.24 which brings a number of new features and bug fixes.
 2020-05-26 11:29:16 +02:00
Matt Long 574442dd7b Enable configuration of the calico IP_AUTODETECTION_METHOD 2020-05-25 13:08:37 +02:00
MoShitrit 316a0e2b00 Adding encryption support for Cilium 
Adding support for 'secret-name' flag

Adding instructions to enable encryption

Updating docs for cli

Addressing comments

Adding ciliumpassword subcommand to 'kops create secret'

Updating command to generate ciliumpassword secret
 2020-05-25 01:54:24 -04:00
Justin SB 27aab12b28 Release 1.18.0-alpha.3 2020-05-06 08:19:06 -04:00