kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,889 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

960 Commits

Author SHA1 Message Date
John Gardiner Myers aa2dbcd6ea hack/update-expected.sh 2021-11-15 18:55:59 -08:00
Kubernetes Prow Robot 3ccb26cef2
Merge pull request #12724 from johngmyers/external-dns 
Upgrade external-dns to 0.10.1 for Kubernetes >= 1.19
 2021-11-14 07:14:47 -08:00
Ciprian Hacman d95c112246 Run hack/update-expected.sh 2021-11-14 09:39:36 +02:00
Ciprian Hacman 047f6124ef Run hack/update-expected.sh 2021-11-14 09:39:09 +02:00
Ciprian Hacman 4ede23fbc4 Add minimal integration test for Kubernetes 1.23 2021-11-14 09:34:15 +02:00
John Gardiner Myers 8c8455b8f4 Upgrade external-dns to 0.10.1 for Kubernetes >= 1.19 2021-11-13 23:02:10 -08:00
Kubernetes Prow Robot 0e32d3dfe2
Merge pull request #12692 from johngmyers/watch-ingress 
Watch Ingress by default when using the external-dns provider
 2021-11-13 22:38:46 -08:00
Eng Zer Jun 425173ae9f
refactor: move from io/ioutil to io and os packages 
The io/ioutil package has been deprecated as of Go 1.16, see
https://golang.org/doc/go1.16#ioutil. This commit replaces the existing
io/ioutil functions with their new definitions in io and os packages.

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
 2021-11-12 15:37:18 +08:00
John Gardiner Myers 241e0558cd Watch Ingress by default when using the external-dns provider 2021-11-07 15:17:01 -08:00
Kubernetes Prow Robot b47e023b1e
Merge pull request #12680 from rifelpet/fix-iam-conditions 
Fix ELB IAM conditions (part 2)
 2021-11-03 23:34:03 -07:00
Peter Rifel af426a272b
./hack/update-expected.sh 2021-11-03 22:17:41 -05:00
Peter Rifel c3e8420731
Revert "Move some AWS IAM policy actions from tagged conditions to wildcard" 
This reverts commit 91e4767851.
 2021-11-03 21:59:43 -05:00
Kubernetes Prow Robot 1e97b0cf76
Merge pull request #12674 from rifelpet/fix-iam-conditions 
Remove tag conditions on certain AWS IAM actions
 2021-11-03 02:24:59 -07:00
Peter Rifel a8f7fee499
./hack/update-expected.sh 2021-11-02 20:21:37 -05:00
Peter Rifel 91e4767851
Move some AWS IAM policy actions from tagged conditions to wildcard 
I checked these against the IAM docs for each API and moved the actions that dont support tag conditions:
https://docs.aws.amazon.com/service-authorization/latest/reference/list_elasticloadbalancing.html#elasticloadbalancing-actions-as-permissions
https://docs.aws.amazon.com/service-authorization/latest/reference/list_elasticloadbalancingv2.html#elasticloadbalancingv2-actions-as-permissions
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonec2.html#amazonec2-actions-as-permissions
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonec2autoscaling.html#amazonec2autoscaling-actions-as-permissions
 2021-11-02 20:06:35 -05:00
Peter Rifel dede42efd2
Fix cluster name used in IAM policies 2021-11-02 17:39:57 -05:00
Peter Rifel df902cca65
Enable lifecycle hook in integration test 2021-11-02 17:38:23 -05:00
Ciprian Hacman a5ae36b9d1 Run hack/update-expected.sh 2021-11-01 16:31:29 +02:00
Ciprian Hacman 6b33db3312 Run hack/update-expected.sh 2021-11-01 13:27:03 +02:00
John Gardiner Myers 3a97dbaa8d Release 1.23.0-alpha.2 2021-10-31 13:46:07 -07:00
John Gardiner Myers a2269c886c hack/update-expected.sh 2021-10-31 12:26:30 -07:00
John Gardiner Myers 9f99d41323 IPv6 requires external CCM 2021-10-31 12:26:30 -07:00
John Gardiner Myers 1ec56c509e hack/update-expected.sh 2021-10-30 13:28:39 -07:00
Ciprian Hacman 76898881cb Use prefixes for IPv6 with Calico 2021-10-30 20:57:40 +03:00
Kubernetes Prow Robot 9bc5887610
Merge pull request #12638 from rifelpet/arn-partition 
Fix hardcoded ARN partitions
 2021-10-29 23:37:19 -07:00
Kubernetes Prow Robot fce557c72b
Merge pull request #12641 from hakman/kops-controller_ipam_perms 
Allow kops-controller to describe network interfaces
 2021-10-29 21:34:14 -07:00
Peter Rifel 0bd7348ad9
Fix ARN partition in SQS queue policy 2021-10-29 23:08:30 -05:00
Peter Rifel 8dc11bdba9
./hack/update-expected.sh 2021-10-29 23:08:28 -05:00
Peter Rifel 5d82ce0b5f
Update cloudmock and integration test inputs to use aws-test partition 2021-10-29 23:07:30 -05:00
Ciprian Hacman 9d1e11c73a Allow kops-controller to describe network interfaces 2021-10-30 06:50:32 +03:00
Peter Rifel 1f37132fc9
Check for orphaned data files in integration test source directories 2021-10-29 17:07:51 -05:00
Peter Rifel c860293783
Add missing cloudformation test invocations 2021-10-29 17:06:15 -05:00
Ciprian Hacman 4597e856de Add more IPv6 integration tests 2021-10-29 17:35:51 +03:00
Kubernetes Prow Robot 5bfdefb43c
Merge pull request #12623 from johngmyers/cilium-ipv6-ipam 
Never masquerade IPv6 with Cilium
 2021-10-29 05:56:51 -07:00
John Gardiner Myers 7b5fdc7c43 Update automatically generated files 2021-10-27 23:40:02 -07:00
John Gardiner Myers 7cb4fbe91e Never masquerade IPv6 with Cilium 2021-10-27 23:40:02 -07:00
Ciprian Hacman a3f4ed7502 Update node permissions 2021-10-28 07:47:09 +03:00
Kubernetes Prow Robot b2a2e4e775
Merge pull request #12617 from johngmyers/ipv6-defaultss 
Improve default CIDR assignments for IPv6
 2021-10-26 23:37:32 -07:00
Kubernetes Prow Robot 77e6186fe4
Merge pull request #12615 from johngmyers/ciliuim-runtime-labels 
Remove vestigial Cilium ContainerRuntimeLabels code
 2021-10-26 23:37:25 -07:00
Kubernetes Prow Robot 228c82cb6e
Merge pull request #12571 from rifelpet/sqs-arn 
Use the SQS Queue's ARN reference
 2021-10-26 22:19:26 -07:00
Peter Rifel 7f8e1b8182
Fix GCE router terraform reference 2021-10-26 22:37:58 -05:00
John Gardiner Myers 07d9114fc2 Set NonMasqueradeCIDR to ::/0 for new IPv6 clusters 2021-10-26 19:22:00 -07:00
justinsb 5e4987b246 GCE: support egress specification 
Empty or "nat" now defaults to creating a per-subnet NAT router for
private topologies.  "external" will assume that egress is configured
outside of kOps.
 2021-10-26 21:37:03 -04:00
Kubernetes Prow Robot 3a056c288b
Merge pull request #12382 from justinsb/gce_subnet_support_refactor 
GCE: improve network & subnet terraform support
 2021-10-26 17:53:41 -07:00
John Gardiner Myers ad6235e428 Update automatically generated files 2021-10-26 16:12:50 -07:00
Ole Markus With 795ac25363 Add permissions needed for KCM to provision NLBs 2021-10-26 08:51:28 +02:00
justinsb d363bf3dad GCE: improve network & subnet terraform support 
We should use the subnet spec in the Cluster, and default to creating
a new subnet/network, but allow an existing one to be specified.
 2021-10-24 17:41:14 -04:00
justinsb 0611e4f638 gce: open kops-controller port from nodes 
This is now needed in our nodeup bootstrap with vTPM on GCE.

Also remove the cadvisor port, it is no longer running on the control-plane nodes.
 2021-10-24 13:47:16 -04:00
Kubernetes Prow Robot 329e752192
Merge pull request #12594 from hakman/canal_tweaks 
Update Canal based on Calico
 2021-10-24 07:46:21 -07:00
justinsb af76c4c20a gce: allow router to refer to network object 
This allows for our execution model to work a little more smoothly.
 2021-10-24 09:19:06 -04:00