kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,334 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

3015 Commits

Author SHA1 Message Date
Rodrigo Menezes 41adf07e15 cleanup code 2020-10-28 11:11:58 -07:00
Kubernetes Prow Robot 5700af84ac
Merge pull request #10111 from javipolo/nodeLocalDnsCacheKubeDnsOnly 
Add nodeLocalDNSCache.kubeDnsOnly option
 2020-10-28 00:03:56 -07:00
Javi Polo c2684bcf7b Add nodeLocalDNSCache.kubeDnsOnly option 2020-10-27 10:46:25 +01:00
Ciprian Hacman 7b9a073da9 Add option for Calico to cleanup kube-proxy rules when running in eBPF mode 2020-10-27 07:35:08 +02:00
Rodrigo Menezes 9bd0a7aedb Add instruction for no downtime 2020-10-26 18:11:46 -07:00
Rodrigo Menezes dbbd0dd802 Move external LB and target group to inline as well. 2020-10-26 17:30:06 -07:00
Rodrigo Menezes 82d0ebdb56 Prevent unintended resource updates to LB attatchments 2020-10-26 17:29:07 -07:00
Kubernetes Prow Robot c9aa53895a
Merge pull request #10048 from hakman/container-runtime-assets 
Install container runtime packages as assets
 2020-10-25 21:03:01 -07:00
Kubernetes Prow Robot fbb172c08c
Merge pull request #9575 from johngmyers/node-labels 
Take node labels from cloud tags on AWS
 2020-10-23 04:01:45 -07:00
Ciprian Hacman c36262009b Install container runtime packages as assets - Code Review 1 2020-10-23 11:05:41 +03:00
binkkatal e32717f31d FIX: Change int fields to string 
The ./hack/update-expected.sh script generates some fields which are
required to be string fields and hence results in linting errors.

This PR changes those fields to string/*string and removes lint
warnings.
 2020-10-20 19:28:20 +05:30
Ole Markus With fe7da5b1ee Allow more volume types 2020-10-20 08:53:55 +02:00
Peter Rifel 5f1e9bc962
Use AWS SDK list of enum values for api validation 2020-10-19 22:58:24 -06:00
Ciprian Hacman a04cea6371 Add eBPF dataplane support for Calico CNI 2020-10-19 20:04:27 +03:00
Kubernetes Prow Robot 18ffb493bf
Merge pull request #10061 from zetaab/fixegress 
do not create egress rules when using vipacl octavia
 2020-10-16 10:01:26 -07:00
Jesse Haka 33e2de60e5 do not create egress rules when using vipacl octavia 2020-10-16 14:11:22 +03:00
Ole Markus With 29a1cb2a9f If we use node local dns, always use the nld local ip as cluster dns 2020-10-16 12:46:17 +02:00
Ciprian Hacman e0332177b3 Skip failing test 2020-10-15 07:46:47 +03:00
Ciprian Hacman 23e73a5b8e Release 1.19.0-alpha.5 2020-10-15 07:09:46 +03:00
Nicolas Vanheuverzwijn b0fd89a193 upgrade-cluster: test that new image in stable or alpha channel will receive automated update 2020-10-14 10:14:47 -04:00
Ciprian Hacman 852bebe165 Install container runtime packages as assets - Misc 2020-10-14 15:41:51 +03:00
Kubernetes Prow Robot 5d9822dedb
Merge pull request #10049 from johngmyers/missing-static-pod-fix 
Don't require PriorityClassName to pass missing-static-pod checks
 2020-10-13 23:27:54 -07:00
John Gardiner Myers ca241a5193 Don't require PriorityClassName to pass missing-static-pod checks 2020-10-13 22:42:11 -07:00
Srikanth Rao 4d251fe900
[Digital Ocean] Implement Delete Instance logic for rolling update (#10000) 
* Add delete Instance implementation for DO

* Add warning for DeleteInstance usage

* Use reconcile option for rolling update

* Update pkg/instancegroups/instancegroups.go

Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>

Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
 2020-10-13 10:06:27 -07:00
Kubernetes Prow Robot 6f85cd98c0
Merge pull request #10037 from h3poteto/iss-9753 
Add WireGuard support for Calico CNI
 2020-10-11 06:10:47 -07:00
Kubernetes Prow Robot 5266619970
Merge pull request #10038 from dntosas/apiserver-include-reqTimeout-conf 
Add support for KubeAPIServer --request-timeout flag
 2020-10-11 04:54:47 -07:00
dntosas 66f42d8a9b
Add support for KubeAPIServer --request-timeout flag 
In this commit, we initialize the support of --request-timeout flag on
the configuration of KubeAPIServer so as to enable users for setting
timeout duration value for all kinds of handlers.

Signed-off-by: dntosas <ntosas@gmail.com>
 2020-10-11 14:17:44 +03:00
AkiraFukushima 76030f4526 Update generated conversion for wireguardEnabled 2020-10-11 15:53:11 +09:00
AkiraFukushima 51e7f2a691 Add wireguardEnabled option in networking Calico 2020-10-11 15:53:07 +09:00
Kubernetes Prow Robot 8c6bb14e15
Merge pull request #10033 from hakman/container-runtime-defaults 
Update Docker version defaults for older k8s versions
 2020-10-10 23:14:47 -07:00
Ciprian Hacman 2c15acfa44 Enable Calico AWS src/dest check permissions when CrossSubnet is set 2020-10-10 04:17:19 +03:00
Ciprian Hacman 95f9228e54 Update Docker version defaults for older k8s versions 2020-10-09 17:12:37 +03:00
Kubernetes Prow Robot cc41bba0cf
Merge pull request #10022 from olemarkus/metrics-server 
Kubelet serving certificate and metrics server addon
 2020-10-09 03:09:07 -07:00
Ciprian Hacman d0349fd6bb Open etcd port only when Calico uses "etcd" datastore 2020-10-09 09:33:38 +03:00
Ole Markus With e7070e334d Add metrics-server addon 2020-10-09 08:27:08 +02:00
monicagangwar a63ccd5163 [calico] awsSrcDstCheck to disable src/dest checks in AWS 
* replacing k8s-ec2-srcdst with calico's config awsSrcDstCheck and
  flag FELIX_AWSSRCDSTCHECK
* documentation and iam changes for calico awsSrcDstCheck
 2020-10-08 17:17:23 +05:30
Ole Markus With e8134b706c Sort wellknown ports and add missing ports to table 2020-10-08 08:27:51 +02:00
Kubernetes Prow Robot a310282f07
Merge pull request #10024 from olemarkus/kops-controller-port 
Move kops-controller serving port out of conflict
 2020-10-07 23:06:15 -07:00
Ole Markus With 1f739b0418 Move kops-controller serving port out of conflict 2020-10-08 07:25:43 +02:00
nareshku dca69323b7 enable kubelet --housekeeping-interval flag 2020-10-07 08:00:41 -07:00
Ole Markus With aa66c4f6d8 Add rolling upgrade to openstack 2020-10-01 20:07:44 +02:00
Ole Markus With a39beb20c8 Rolling update test for OS 2020-10-01 20:07:44 +02:00
Ole Markus With 7c8ff94631 Make setupmockopenstack standalone 2020-10-01 19:15:39 +02:00
Kubernetes Prow Robot d6f60b9ee5
Merge pull request #9981 from olemarkus/cleanup-cloud-2 
More removals of BuildCloud
 2020-10-01 05:18:54 -07:00
Kubernetes Prow Robot 4840582429
Merge pull request #9996 from rifelpet/additional-network-cidr 
Fix support for multiple additionalNetworkCIDR blocks
 2020-10-01 03:52:56 -07:00
Ole Markus With 7eb1489945 Bump cilium to 1.8.4 2020-10-01 10:21:10 +02:00
Kubernetes Prow Robot 13cbd84886
Merge pull request #9967 from olemarkus/cilium-hubble-pointer 
Cilium hubble pointer
 2020-09-30 12:36:54 -07:00
Peter Rifel db1b4e301c
Reconcile deletion of VPC CIDR block associations 2020-09-30 09:34:22 -05:00
Peter Rifel 4bcfebebcc
Fix the detection and rendering of multiple additionalNetworkCIDR blocks 2020-09-27 20:12:09 -05:00
Kubernetes Prow Robot 257f85962e
Merge pull request #9974 from olemarkus/cleanup-rolling-update-ctx 
Set ctx and cluster on the rolling update struct instead of passing it around everywhere
 2020-09-27 02:24:48 -07:00
Ole Markus With 1d922af364 Pass cloud into populate cluster 2020-09-24 07:22:13 +02:00
Kubernetes Prow Robot d97eb510dc
Merge pull request #9973 from olemarkus/cleanup-cloud 
Build cloud outside of PerformAssignments
 2020-09-22 23:42:08 -07:00
Ole Markus With 63f13322d5 Don't pass ctx and cluster everywhere 2020-09-23 08:30:24 +02:00
Ole Markus With 7bc17f4b1f Build cloud outside of PerformAssignments 
We tend to build cloud, call some method, and then build cloud over
again. It would be easier to just pass the first one along.

Passing along cloud would also make it easier to mock cloud.
 2020-09-23 07:54:28 +02:00
Ole Markus With 6797998ac1 Consolidate all buildMinimalClusters into a generic test cluster builder 2020-09-19 19:55:19 +02:00
Kubernetes Prow Robot bca601d1da
Merge pull request #9969 from hakman/docker-19.03.13 
Update Docker to v19.03.13
 2020-09-18 10:46:46 -07:00
Kubernetes Prow Robot 255cd59b67
Merge pull request #9964 from rifelpet/sa-partition 
Add AWS partition support to iam service account roles
 2020-09-18 06:48:46 -07:00
Kubernetes Prow Robot f07d248a24
Merge pull request #9958 from hakman/hash-mirrors 
Use all kops mirrors to determine artifacts hashes
 2020-09-18 04:00:45 -07:00
Kubernetes Prow Robot e7bfedd1ac
Merge pull request #9921 from olemarkus/nth 
Add addon for aws node termination handler
 2020-09-18 03:10:45 -07:00
Ciprian Hacman 96e3fefd85 Update Docker to v19.03.13 2020-09-18 12:14:43 +03:00
Ole Markus With b9111c78e7 Make hubbleSpec into a pointer 2020-09-18 09:23:52 +02:00
Ciprian Hacman fcc486d250 Update containerd to v1.4.1 2020-09-18 10:01:30 +03:00
Ciprian Hacman 2f218125fe Mention the new sha256 hash files only after failing all mirrors 2020-09-18 09:51:55 +03:00
Ciprian Hacman 0c6f1c733c Use all kops mirrors to determine artifacts hashes 2020-09-18 09:44:37 +03:00
Ole Markus With b9212f85ad Add addon for aws node termination handler 2020-09-17 21:09:28 +02:00
Peter Rifel d4d4545345
Add AWS partition support to iam service account roles 2020-09-17 10:01:27 -05:00
Adam Smith 2fb1a4ecd2 Support ChainInsertMode config option for Calico Networking 2020-09-16 10:38:45 +01:00
Ciprian Hacman 0eb626fcdd Release 1.19.0-alpha.4 2020-09-16 11:37:38 +03:00
Kubernetes Prow Robot 50e61d6bc9
Merge pull request #9924 from hakman/additional-policies-shared-roles 
Only add additional policies to kops managed IAMRoles
 2020-09-15 20:03:19 -07:00
Ole Markus With b8bc6d35b8 Force external cloud controller manager on OS 2020-09-15 18:49:51 +02:00
Ole Markus With 926a0bc7c1 Block external CCM for k8s less than 1.13 2020-09-15 15:51:23 +02:00
Ole Markus With 6efb91a15b Don't write application credentials to cloud config unless external CCM is enabled 2020-09-15 09:45:09 +02:00
Kubernetes Prow Robot a93febf5a6
Merge pull request #9911 from hakman/fix-gossip 
Allow the BootstrapClient task to run after Protokube
 2020-09-13 21:10:57 -07:00
Kubernetes Prow Robot 04b9f41daa
Merge pull request #9883 from hs0210/work 
Add unit test for pkg/apis/kops/model/features.go
 2020-09-13 15:24:57 -07:00
Kubernetes Prow Robot 58092b5666
Merge pull request #9925 from olemarkus/cas-fixes 
Add missing flags to cluster autoscaler template
 2020-09-13 00:58:57 -07:00
Ole Markus With 2b5950c24c Add missing flags to template 2020-09-12 08:24:29 +02:00
Ciprian Hacman 07be801a12 Only add additional policies to kops managed IAMRoles 2020-09-12 08:36:24 +03:00
Kubernetes Prow Robot 69f22a4b52
Merge pull request #9918 from olemarkus/validate-labels 
Validate labels
 2020-09-11 09:04:15 -07:00
Kubernetes Prow Robot ccd810dad9
Merge pull request #9907 from olemarkus/openstack-no-volume-type 
Remove constraint of setting volume type for OS
 2020-09-11 01:14:14 -07:00
Ole Markus With 9f5ba43445 Validate labels 2020-09-11 09:59:24 +02:00
John Gardiner Myers 54c280eed5 update-expected.sh 2020-09-10 20:59:28 -07:00
John Gardiner Myers 7069aaabf6 Take node labels from cloud tags on AWS 2020-09-10 20:59:24 -07:00
John Gardiner Myers 24ff622d8e Rename NodeReconciler to LegacyNodeReconciler 2020-09-10 20:42:56 -07:00
Ciprian Hacman c1e0991153 Skip the iamPolicy.DNSZone task when using gossip 2020-09-10 22:55:36 +03:00
Evgeny Zislis 608a561f8c
only apply external policy tasks on non-shared iam 2020-09-10 12:58:54 +03:00
Kubernetes Prow Robot 036ea69525
Merge pull request #9352 from justinsb/irsa_with_public 
Simplified form of IAM Roles for ServiceAccounts
 2020-09-09 22:23:44 -07:00
Kubernetes Prow Robot 4508406515
Merge pull request #9908 from rdrgmnzs/CacheNodeidentityInfo 
Allow caching of Nodeidentity Info in kops-controller for AWS.
 2020-09-09 13:01:44 -07:00
Rodrigo Menezes 4c057f138a Allow caching of Nodeidentity Info in kops-controller for AWS to reduce the number of DescribeInstances API calls. 2020-09-09 22:11:29 +03:00
Ole Markus With ecfdf5715b Remove constraint of setting volume type for OS 
There is no real reason to do this. In some cases this may even prevent
clusters from starting where there is no explicit volume type defined in
cinder.
 2020-09-09 20:53:17 +02:00
Chris Loukas 65610dbcee Update NodeLocalDNSConfig with Mem/CPU requests 
Add NodeLocalDNS.CPURequest and NodeLocalDNS.MemoryRequest to
configure resource requests.

If not explicitly set, fall back to 25m and 5Mi
 2020-09-09 18:40:14 +03:00
Justin SB 6fa8be2716 JSON formatting of IAM: Workaround for optional fields 
AWS IAM is very strict and doesn't support `Resource: []` for example.
We implement a custom MarshalJSON method to work around that.
 2020-09-09 09:57:07 -04:00
Justin Santa Barbara d8895c57ec Add version logic to UseServiceAccountIAM 
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-09-09 09:57:07 -04:00
Justin SB a61ecf4c58 Refactor to use interface for iam Subjects 
Hat-tip to johngmyers for the idea!
 2020-09-09 09:57:07 -04:00
Justin SB f05980f6ba IAM Policy: rely on stub resolution/unification 
This avoids the hacky search through the list of tasks.
 2020-09-09 09:57:06 -04:00
Justin SB 8498ac9dbb Create PublicJWKS feature flag 
This should be much easier to start and to get under testing; it only
works with a load balancer, it sets the apiserver into anonymous-auth
allowed, it grants the anonymous auth user permission to read our jwks
tokens.  But it shouldn't need a second bucket or anything of that
nature.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-09-09 09:57:06 -04:00
Kubernetes Prow Robot 4604fa53b3
Merge pull request #9899 from olemarkus/remove-insecure-bind-address 
Don't explicitly set insecure-bind-address on newer k8s
 2020-09-09 03:25:53 -07:00
Ole Markus With 886b4c97cb Don't explicitly set insecure-bind-address on newer k8s 2020-09-09 11:41:51 +02:00
Kubernetes Prow Robot 766e65c725
Merge pull request #9884 from hakman/mock-1.19.0-alpha.3 
Update mock version to 1.19.0-alpha.3
 2020-09-08 00:09:43 -07:00
Ciprian Hacman c7bc3d4397 Update mock version to 1.19.0-alpha.3 2020-09-08 08:45:25 +03:00
Hu Shuai 9d80c416e0 Add unit test for pkg/apis/kops/model/features.go 
Signed-off-by: Hu Shuai <hus.fnst@cn.fujitsu.com>
 2020-09-08 13:27:09 +08:00