kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,334 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1227 Commits

Author SHA1 Message Date
Kubernetes Prow Robot dc0c219727
Merge pull request #9360 from johngmyers/remove-baremetal 
Remove the baremetal cloud provider
 2020-06-15 21:11:57 -07:00
John Gardiner Myers 0d74344a43 Remove the baremetal cloud provider 2020-06-14 10:38:29 -07:00
Ciprian Hacman 51ebd187f0 Add "--selinux-enabled" flag for Docker 2020-06-12 06:19:09 +03:00
Ole Markus With e9d4e3f02d nit 2020-06-11 07:39:52 +02:00
Ole Markus With ed2bfcf7d9 Ignore pre/build part of cilium version. 2020-06-11 07:38:14 +02:00
Ole Markus With e09365b6c2 Validate cilium version 2020-06-11 07:38:14 +02:00
Kubernetes Prow Robot 10bb3cf334
Merge pull request #9217 from johngmyers/refactor-validation 
Refactor and improve API validation
 2020-06-09 20:04:07 -07:00
Peter Rifel d923354d4f
Address review comments 2020-06-09 17:07:44 -05:00
Peter Rifel 95b6a3f837
Address feedback 2020-06-09 10:58:24 -05:00
Peter Rifel 807cbcb1a0
fix new validation unit test 2020-06-09 10:13:01 -05:00
Peter Rifel bc074e857c
Use ec2.DescribeInstanceTypes in awsup.GetMachineTypeInfo 
This requires passing a cloud object in additional places throughout the validation package and originating mostly from cmd/kops

This means that some kops commands now require valid cloud provider credentials, but I don't think this is an issue because the vast majority of use-cases already require the same cloud provider credentials in order to interact with the state store.
 2020-06-09 10:13:01 -05:00
Peter Rifel cebb708fdb
Move MixedInstancesPolicy validation to aws.go 2020-06-09 10:13:01 -05:00
John Gardiner Myers 898f9fa198 Refactor and improve API validation 2020-06-05 11:43:42 -07:00
John Gardiner Myers 9466893436 Refactor api validation code out of legacy.go 2020-06-05 11:43:09 -07:00
John Gardiner Myers d27c733332 Refactor api validation code out of legacy.go 2020-06-05 11:42:50 -07:00
John Gardiner Myers 1d7027895f Refactor and improve API validation 2020-06-05 11:12:34 -07:00
John Gardiner Myers 8b26165030 Refactor api validation code out of legacy.go 2020-06-05 11:08:08 -07:00
Kubernetes Prow Robot 6d6db96aef
Merge pull request #9265 from olemarkus/validate-rootvolumetype 
Validate IG RootVolumeType
 2020-06-04 17:47:44 -07:00
John Gardiner Myers e88e0cf7ec Remove code supporting dropped k8s versions 2020-06-04 12:11:51 -07:00
Kubernetes Prow Robot 5762f659c1
Merge pull request #9137 from olemarkus/cni-package 
Move networking in nodeup to dedicated subpackage
 2020-06-04 10:19:15 -07:00
Ole Markus With b62f6aa894 Move networking in nodeup to dedicated subpackage 2020-06-04 17:32:41 +02:00
Ole Markus With 9732179d40 Tag all cilium keys with omitempty 2020-06-04 15:46:32 +02:00
Kubernetes Prow Robot c6dcaa8199
Merge pull request #9154 from MoShitrit/issue-9031 
Add support for encryption in Cilium
 2020-06-04 03:11:15 -07:00
Kubernetes Prow Robot c8674f23a0
Merge pull request #9253 from olemarkus/cilium-ipv4 
Don't make it possible to toggle ipv4/6. We only support ipv4 anyway
 2020-06-03 14:02:43 -07:00
Kubernetes Prow Robot 4fe5ad03f8
Merge pull request #9255 from olemarkus/romana-remove 
Remove romana support
 2020-06-03 13:24:59 -07:00
Ole Markus With 4b6b200377 Only validate root volume types if on aws 2020-06-03 22:03:44 +02:00
Ole Markus With e271ffa561 Validate ig rootvolumetype 2020-06-03 19:37:51 +02:00
Ole Markus With 1a9de4511e Remove unecessary optionTaken validation 2020-06-03 17:06:23 +02:00
Kubernetes Prow Robot 6a772a7a9b
Merge pull request #9258 from hakman/docker-19.03.11 
Use Docker 19.03.11 for Kubernetes 1.18+
 2020-06-03 07:00:27 -07:00
Kubernetes Prow Robot c78b24fa41
Merge pull request #9140 from olemarkus/docs-networking-support 
Add table of networking providers and their status
 2020-06-03 07:00:19 -07:00
Kubernetes Prow Robot 4ef6bbe229
Merge pull request #9175 from mtl-wgtwo/calico-ip-detection-method 
Enable configuration of the calico IP_AUTODETECTION_METHOD  and IP6_AUTODETECTION_METHOD
 2020-06-03 06:24:18 -07:00
Ciprian Hacman a7c9ef9ff0 Use Docker 19.03.11 for Kubernetes 1.18+ 2020-06-03 12:03:56 +03:00
Ole Markus With 991549a5f4 Remove support for Romana 2020-06-03 08:23:53 +02:00
Ole Markus With e994bb80a6 Add Romana deprecation/removal notices to godoc 2020-06-03 08:12:11 +02:00
Ole Markus With d2cf2866a1 Add Romana deprecation/removal notices to godoc 2020-06-03 08:11:43 +02:00
Ole Markus With 972d7a3509 Don't make it possible to toggle ipv4/6. We only support ipv4 anyway 2020-06-03 06:58:13 +02:00
Kubernetes Prow Robot 7b067983df
Merge pull request #9177 from olemarkus/remove-vsphere 
Remove vsphere cloud provider
 2020-06-01 06:19:54 -07:00
Justin SB bced4c309b Validation: MixedInstancePolicy need not override instance types 
The mixed instance policy is also useful for spot instances, and
generally overriding the instances doesn't seem to be required.

Also both 0 and 1 instance type overrides appear to be supported by
AWS.
 2020-05-31 23:37:02 -04:00
Kubernetes Prow Robot d3d6fd66d0
Merge pull request #9220 from rifelpet/pkg-apis-cleanup 
Remove extraneous markdown files in pkg/apis
 2020-05-31 07:59:53 -07:00
Peter Rifel b704376504
Remove extraneous markdown files in pkg/apis 2020-05-31 09:09:27 -05:00
Ole Markus With 7342525872 Remove vsphere from kops files 2020-05-30 13:36:55 +02:00
Matt Long de1d082bc5 Change error to InernalError 2020-05-29 09:55:46 +02:00
John Gardiner Myers c1562291d7 Update adding_a_feature.md with more modern example 2020-05-28 23:19:14 -07:00
Kubernetes Prow Robot 4b4dbd4285
Merge pull request #8826 from johngmyers/remove-legacy-etcd-provider 
Remove support for the legacy etcd provider as of k8s 1.18
 2020-05-28 10:38:04 -07:00
Matt Long b983af231e Update validation per code review comments 2020-05-28 11:13:56 +02:00
Matt Long 9385b1adf9
Apply suggestions from code review 
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-28 08:47:52 +02:00
Kubernetes Prow Robot 6830cf6d44
Merge pull request #9065 from johngmyers/remove-distro 
Remove support for CoreOS and Jessie
 2020-05-27 23:22:01 -07:00
Matt Long 2317b77ba5 Update with static check suggestions 2020-05-27 15:51:55 +02:00
Matt Long 1fea54bc3c Update regex in test 2020-05-27 15:44:57 +02:00
Matt Long 79275f9ea8 Add additional tighter validation 2020-05-27 15:43:08 +02:00
Matt Long c00464f11d Update crds, apis, models. Add limited field validation 2020-05-27 15:24:01 +02:00
Matt Long 574442dd7b Enable configuration of the calico IP_AUTODETECTION_METHOD 2020-05-25 13:08:37 +02:00
MoShitrit 316a0e2b00 Adding encryption support for Cilium 
Adding support for 'secret-name' flag

Adding instructions to enable encryption

Updating docs for cli

Addressing comments

Adding ciliumpassword subcommand to 'kops create secret'

Updating command to generate ciliumpassword secret
 2020-05-25 01:54:24 -04:00
Kubernetes Prow Robot bfd65ae589
Merge pull request #9157 from olemarkus/networking-cleanup 
Networking cleanup
 2020-05-24 07:03:10 -07:00
Ole Markus With 1698069ae2 Update pkg/apis/kops/networking.go 
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-23 08:04:34 +02:00
ZouYu 956f07188f Add unit test case for pkg/apis/kops/util/versions_test.go 
Signed-off-by: ZouYu <zouy.fnst@cn.fujitsu.com>
 2020-05-22 15:23:25 +08:00
Ole Markus With 6e04586361 Docs fixes 2020-05-22 08:08:58 +02:00
Ole Markus With 82c4670f04 Small comment adjustments 2020-05-22 08:08:58 +02:00
Ole Markus With 77aab657cc Copy comments 2020-05-22 08:08:58 +02:00
Ole Markus With 30a2ec7d4d Update pkg/apis/kops/v1alpha2/networking.go 
Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
 2020-05-22 08:08:58 +02:00
Ole Markus With eebb605c9c Remove as much of the classic networking logic as we can 2020-05-22 08:08:58 +02:00
Ole Markus With 95d2170fa6 Update networking in kops create 
* Remove classic from cli docs. Add missing providers
* Use cilium instead of weave in example since we don't consider weave stable
 2020-05-22 08:08:58 +02:00
Kubernetes Prow Robot 26421c3081
Merge pull request #9133 from justinsb/service_account_jwks_uri_flag 
Map kube-apiserver service-account-jwks-uri flag
 2020-05-19 20:54:18 -07:00
Kubernetes Prow Robot bda2a15ee6
Merge pull request #9024 from tomesm/support_launch_template 
Added Launch Template support for instance interruption behavior
 2020-05-17 15:35:36 -07:00
Justin SB ae4381c555 Map kube-apiserver service-account-jwks-uri flag 
This is needed/useful for identity federation to AWS.
 2020-05-16 22:03:47 -04:00
Martin Tomes 224351a4b7
Update pkg/apis/kops/instancegroup.go 
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-08 22:49:32 +02:00
Martin Tomes dd67149e99
Update pkg/apis/kops/v1alpha2/instancegroup.go 
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-08 22:49:17 +02:00
Justin SB 75fd939a62
kube-apiserver: healthcheck via sidecar container 
kube-apiserver doesn't expose the healthcheck via a dedicated
endpoint, instead relying on anonyomous-access being enabled.  That
has previously forced us to enable the unauthenticated endpoint on
127.0.0.1:8080.

Instead we now run a small sidecar container, which
proxies /healthz and /readyz requests (only) adding appropriate
authentication using a client certificate.

This will also enable better load balancer checks in future, as these
have previously been hampered by the custom CA certificate.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-07 08:06:52 -04:00
Anders Østhus 9409e2af67 Added support for configuring disable-attach-detach-reconcile-sync in k-c-m config 2020-05-05 15:26:58 +02:00
John Gardiner Myers bcb6255575 Remove no-longer-needed validation 2020-05-04 23:27:51 -07:00
John Gardiner Myers 843e5b9b16 Move GCEServiceAccount into CloudConfig 2020-05-03 20:35:32 -07:00
Ole Markus With 74732487d5 Fix various tests that used masters without etcd members 2020-04-30 18:32:28 +02:00
Martin Tomes c66180bc58 Added support for instance interruption behavior 2020-04-29 14:53:17 +02:00
Ole Markus With 4978932213 Make it possible to switch zone for an IG 
* Ensure every master runs etcd
* Make it possible to remove masters
* "Cross" Validate on IG creation
 2020-04-28 13:28:15 +02:00
Kubernetes Prow Robot fd512ca165
Merge pull request #8980 from olemarkus/single-to-master 
Allow single to multi-master cluster
 2020-04-27 12:18:05 -07:00
Kubernetes Prow Robot f6068ddcb4
Merge pull request #8967 from michalschott/profiling_and_protect_kernel_defaults_flags 
Profiling and protect kernel defaults flags
 2020-04-27 10:09:29 -07:00
mosheshitrit 9fffc5f8e0 Make CPU Requests for Calico configurable instead of hard-coded 
Update bindata.go

Apply suggestions from code review

Applying suggested changes.

Co-Authored-By: Ciprian Hacman <ciprianhacman@gmail.com>

Applying changes after running `make gofmt`

Applying changes after running `make crds`

Apply suggestions from code review

Applying suggested changes.

Co-Authored-By: Ciprian Hacman <ciprianhacman@gmail.com>

Applying changes after running `make gofmt`

Fixing broken things

Typo fixes

Apply suggestions from code review

Co-Authored-By: Ciprian Hacman <ciprianhacman@gmail.com>

Apply suggested changes and run necessary `make` steps
 2020-04-26 12:44:14 -04:00
John Gardiner Myers 3f66e092e5 Fix field names for etcd members 2020-04-25 11:47:50 -07:00
John Gardiner Myers 7e934440e5 Remove support for the legacy etcd provider as of k8s 1.18 2020-04-25 11:47:50 -07:00
Ole Markus With 23b954a95a Make gofmt and update-header 2020-04-25 20:02:15 +02:00
Ole Markus With 158c785c71 Fix single to multi-master migration 
* Make it possible to add additional etcd members
* Update the documentation
 2020-04-25 19:06:57 +02:00
Ole Markus With 33eea2639f Test for ability to switch from single to multi-master 2020-04-25 19:06:43 +02:00
Michal Schott 367f8856e3
Update docs/cluster_spec.md 
Co-Authored-By: Ciprian Hacman <ciprianhacman@gmail.com>
 2020-04-25 14:33:02 +02:00
Michal Schott 8a17c722c5
Test update. 2020-04-24 10:40:36 +02:00
Michal Schott 115fdd22d5
make apimachinery. 2020-04-23 23:50:49 +02:00
Michal Schott cd258f8d3f
Added protect-kernel-defaults flag. 2020-04-23 23:45:24 +02:00
Michal Schott f45c702643
Added profiling flag. 2020-04-23 23:29:59 +02:00
Kubernetes Prow Robot 982496c539
Merge pull request #8930 from justinsb/enabled_to_pointer 
Change NodeLocalDNS Enabled to *bool
 2020-04-16 21:55:06 -07:00
Justin Santa Barbara f3a40cf87c Change NodeLocalDNS Enabled to *bool 
As discussed in #8780 so we differentiate between false and not-set.
Also tweak the comment.
 2020-04-17 00:09:35 -04:00
Nicolas Vanheuverzwijn 4ceb324f0a refresh apis 2020-04-16 12:04:59 -04:00
Nicolas Vanheuverzwijn 89d4fb757e feat: allow additional security groups on bastion ELB 2020-04-16 12:04:59 -04:00
Ole Markus With bbce2556fc Ensure we are not using legacy etcd for the cilium etcd cluster 2020-04-16 08:42:59 +02:00
Ole Markus With 869ab75dea Use etcd-manager for the cilium etcd cluster 2020-04-16 08:42:59 +02:00
Justin Santa Barbara 31bb16d4d1 Add context.Context to most signatures 
The client-go signature for most methods adds a context.Context
object, and also makes Options mandatory.  Feed through a
context.Context through many of our methods (but use context.TODO to
stop it getting totally out of hand!)
 2020-04-11 14:44:17 -04:00
Ole Markus With d5019a6c11 Simplify the spec and templates a bit 2020-04-10 10:48:21 +02:00
Salvatore Mazzarino d18c88a546 Add unit tests 
Signed-off-by: Salvatore Mazzarino <dev@mazzarino.cz>
 2020-04-10 10:44:53 +02:00
Salvatore Mazzarino cf57350e4c Improved validation logic 
Signed-off-by: Salvatore Mazzarino <dev@mazzarino.cz>
 2020-04-10 10:44:53 +02:00
Salvatore Mazzarino f754cbda7d NodeLocal DNSCache 
Signed-off-by: Salvatore Mazzarino <dev@mazzarino.cz>
 2020-04-10 10:44:53 +02:00
Peter Rifel 10e4fb499a Generate v1 CRDs 2020-04-08 15:21:18 -05:00
Ciprian Hacman a2c2affb5c Remove support for Docker 1.11, 1.12 and 1.13 2020-04-06 17:24:56 +03:00
Kubernetes Prow Robot f1cb72eac4
Merge pull request #8833 from olemarkus/numa 
Make kubelet topology-manager-policy configurable
 2020-04-05 15:15:46 -07:00
Ole Markus With 4000988b01 Apply suggestions from code review 
Co-Authored-By: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-04-05 21:31:47 +02:00
Ciprian Hacman ad8e1ceff7 Remove basic authentication support for k8s 1.19+ 2020-04-05 17:47:26 +03:00
Kubernetes Prow Robot 502aaacbe2
Merge pull request #8700 from johngmyers/version-tweaks 
Balk at using Kubernetes versions too new to be supported
 2020-04-05 07:17:45 -07:00
Ole Markus With cb8f3e5594 Return errors early if kubernetesVersion cannot be determined 2020-04-05 07:25:18 +02:00
eric-hole c59314a799 Adds some initial tests. Fixes some logic 
Need to fix service account implementation first

Fixing tests and iterating on the serviceaccount logic

Run the gce_byo_sa test
 2020-04-04 21:20:31 -07:00
eric-hole b3d65ffce0 Adds a gce-service-account flag so you BYO service-account 
Generated code and some cleanup

Not sure where that code went

Tests for service account

fixes case on gceserviceaccount
 2020-04-04 21:15:56 -07:00
Ole Markus With cf42d2b92d Make topologymanagerpolicy configurable 2020-04-03 14:34:53 +02:00
GuyTempleton c1a259b5a4
Cleanup InstanceGroup MixedInstancePolicy docs 
Also improved consistency of rest of InstanceGroup docs and
some docstrings
 2020-04-02 16:48:17 +01:00
Kubernetes Prow Robot 759e24a490
Merge pull request #8802 from thejasbabu/feature/spot-block 
Add support for Spot block in launch template
 2020-04-01 10:15:27 -07:00
Thejas B dda8dc3f37 Add support for Spot block in launch template 
- Launch configuration does not support the field SpotDurationInMinutes which is used to reserve the spot instances, but however Launch Template does
 2020-03-31 20:07:01 +05:30
John Gardiner Myers 849e97d0d4 Fix dns-controller flapping on spot instances 2020-03-30 21:53:03 -07:00
John Gardiner Myers b645dac752 Remove support for v1alpha1 and before 2020-03-24 19:49:15 -07:00
Kubernetes Prow Robot 4a740942fb
Merge pull request #8779 from fentas/master 
Add cilium option tofqdns-dns-reject-response-code
 2020-03-24 11:25:03 -07:00
Ciprian Hacman 5c8cc493af Set default log level to "info" for containerd 2020-03-22 20:53:58 +02:00
fentas 49b18cd3f7 Add cilium option tofqdns-dns-reject-response-code 2020-03-21 16:52:08 +01:00
Ole Markus With e77a7d495c Allow configuration of enable-remote-node-identity 2020-03-19 09:48:59 +01:00
Kubernetes Prow Robot e7846fd0db
Merge pull request #8402 from rdrgmnzs/etcd-setting-overwrite 
Allow users to overwrite etcd settings.
 2020-03-15 11:34:35 -07:00
Ciprian Hacman 360a117e02 Add config option for Docker "health-check" 2020-03-15 09:51:03 +02:00
Ole Markus With 2274045924 Add option to use etcd managed by cilium-etcd-operator as kvstore 2020-03-13 20:17:42 +01:00
Kubernetes Prow Robot d6a2daf26f
Merge pull request #8559 from olemarkus/cilium-deprecate-unused-fields 
Document all the fields in the Cilium spec
 2020-03-13 06:52:40 -07:00
Ole Markus With 3a32b76abc Add the docs to the api specs 2020-03-12 21:36:05 +01:00
Rodrigo Menezes 5901ba05fc updated to use #8455 2020-03-12 10:25:52 -07:00
Rodrigo Menezes 301463577e Allow users to overwrite etcd settings. 
Fix typo

fix env vars config  ordering
 2020-03-12 10:25:52 -07:00
Peter Rifel a999b3ea61 fix OWNERS labels format 
These need to be lists
 2020-03-10 22:47:50 -05:00
Ole Markus With e92e70c7d0 When nodeport is enabled, use strict kube-proxy-replacement to ensure cilium fully replaces kube-proxy 2020-03-10 18:05:44 +01:00
Kubernetes Prow Robot db435ee7cd
Merge pull request #8717 from rifelpet/owners-labels 
Add labels to OWNERS files
 2020-03-10 08:23:51 -07:00
Peter Rifel 237a125f2c Add labels to OWNERS files 
This will automatically label PRs that touch these directories.

This makes it easier to query GitHub for PRs that affect certain areas of the code.

I mostly used existing labels but created some new ones as well.
 2020-03-10 08:35:58 -05:00
tanjunchen d73bcc1a3e remove // TODO move this into networking.go :( 2020-03-10 15:17:02 +08:00
John Gardiner Myers 443012efc7 Parse more Kubernetes versions 2020-03-08 17:42:25 -07:00
Kubernetes Prow Robot 380cc74511
Merge pull request #8667 from johngmyers/validate-cilium 
Add more API validation for Cilium
 2020-03-06 10:17:24 -08:00
John Gardiner Myers e104cdb982 Default maxSurge to 1 on AWS 2020-03-04 19:41:51 -08:00
Ole Markus With 8338824d9c
Apply suggestions from code review 
Co-Authored-By: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-03-04 20:14:01 +01:00
John Gardiner Myers 1b7c5139e0 Merge branch 'master' into surge 2020-03-03 17:53:18 -08:00
Ole Markus With 3fc80bc97f More documentation changes 2020-03-03 19:15:49 +01:00
Ole Markus With 4f17852301
Apply suggestions from code review 
Co-Authored-By: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-03-03 19:12:38 +01:00
John Gardiner Myers fda93acb1b Address review comments 2020-03-03 10:11:05 -08:00
John Gardiner Myers 2fb3fe6410 Add more API validation for Cilium 2020-03-03 09:16:15 -08:00
John Gardiner Myers a3eb1a4b8c Simplify API validation by using IsValidValue() 2020-03-03 09:16:13 -08:00
Ole Markus With c1e123103e Fix documentation for enableNodePort and IPAM 2020-03-02 19:42:47 +01:00
Ole Markus With 8ca9bb195c Fixed more mistakes 2020-03-02 19:27:05 +01:00
Ole Markus With d71c77a87e
Apply suggestions from code review 
Co-Authored-By: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-03-02 19:08:08 +01:00
tanjunchen 64ffe00b1c support apiserver --kubelet-certificate-authority flag 2020-03-02 11:27:59 +08:00
John Gardiner Myers ed73726195 Address review comments 2020-02-28 21:05:43 -08:00
Ciprian Hacman 44a508cb18 Add full field path to validation errors 2020-02-27 14:56:58 +02:00
Ciprian Hacman 5b9f01cdc7 Validate IptablesBackend for Calico and Canal 2020-02-27 04:35:56 +02:00
Ciprian Hacman f218f0bd7a Update Calico and Canal to v3.12.0 2020-02-27 04:03:42 +02:00
Kubernetes Prow Robot e07f84708e
Merge pull request #8276 from rifelpet/aws-vpc-cni-env-vars 
Add support for custom env vars in amazon-vpc-cni
 2020-02-26 15:07:20 -08:00
John Gardiner Myers ad8b018f1e Validate at most one networking option chosen 2020-02-23 21:30:47 -08:00
Ole Markus With 73fb299a8e Document all the fields in the Cilium spec 2020-02-22 20:58:13 +01:00