kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
17,077 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1219 Commits

Author SHA1 Message Date
Ole Markus With f1cc2de274 Do not create a cert-manager namespace 2022-02-18 15:18:42 +01:00
Ole Markus With 9431c0ab69 Update LBC to 2.4.0 2022-02-16 21:39:31 +01:00
Kubernetes Prow Robot bf43ae5694
Merge pull request #13228 from MoShitrit/aws-cni-1.10.2 
Bump AWS CNI to 1.10.2
 2022-02-14 21:52:04 -08:00
Moshe Shitrit d5674c4e07 Apply suggestions 2022-02-14 20:24:13 -08:00
Jiahui Feng ddf6e6031f livenessProbe for GCP CCM. 2022-02-14 10:55:21 -08:00
Moshe Shitrit 46ba2882d2 Update expected 2022-02-10 12:13:21 -05:00
Moshe Shitrit a6817de9f5 Align manifest with master of aws-cni repo 2022-02-10 12:09:29 -05:00
Moshe Shitrit 2cab9c9c68 Bump aws-cni to 1.10.2 2022-02-08 22:11:17 -05:00
Ryan Dyer 42ae1cef47 Update aws node termination handler to 1.14.0 2022-02-08 14:15:09 -06:00
Ole Markus With 1232b88ed8 Quote AWS_ENI_LIMITED_POD_DENSITY value in karpenter manifest 2022-02-04 22:47:45 +01:00
Ole Markus With ab4c83b021 Use non-legacy tag in karpenter subnet selector 2022-02-04 22:47:39 +01:00
justinsb 3ff0ed0d08 Pull k8s-custom-iptables from k8s.gcr.io 
This is more correct anyway, but also ensures it will be rewritten
correctly by mirroring.

Only used on GCE.
 2022-02-03 10:45:50 -05:00
Ciprian Hacman e76b448fcb Update Canal to v3.21.4 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-03 10:15:42 +02:00
Ciprian Hacman 26eccb0cbf Update Calico to v3.21.4 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-03 10:15:30 +02:00
Ole Markus With dcf06e320c Bump karpenter to 0.6.0 2022-02-02 13:56:00 +01:00
srikiz f9af05e184 update ccm version to 0.1.36 2022-02-01 19:08:40 +05:30
Ole Markus With 85a7877666 Bump cert-manager and related godep to 1.6.2 2022-01-26 20:28:23 +01:00
Ole Markus With be49fce8f7 Bump karpenter to 0.5.6 2022-01-25 21:49:58 +01:00
Ole Markus With 59dc424eae Bump metrics-server to 0.6.0 and enable HA mode 2022-01-21 09:28:50 +01:00
liranp e0bd523f03
feat(spot/addon): bump spotinst/ocean-controller to v1.0.81 2022-01-07 10:45:10 +02:00
John Gardiner Myers d5ac8862d5 Release 1.24.0-alpha.2 2022-01-01 10:35:11 -08:00
Ole Markus With 844c36b6d2 Bump external-snapshotted to v5.0.0 2022-01-01 07:53:28 +01:00
Ole Markus With abcab2b327 Support attribute based instance type selection for karpenter 2021-12-29 20:14:57 +01:00
Ole Markus With dd06cd337f Bump Cluster Autoscaler and update manifest 2021-12-29 18:06:27 +01:00
John Gardiner Myers dae281d30e Migrate to GCE CCM in k8s 1.24 2021-12-28 19:33:07 -08:00
Jiahui Feng 733f4d524f external CCM for GCE 2021-12-20 17:15:17 -08:00
Ole Markus With 52aa9734d8 Prefix karpenter logging-config name 2021-12-27 11:17:41 +01:00
Ole Markus With 6c4d04727d Fix typo in karpenter env argument 2021-12-26 08:07:07 +01:00
Ole Markus With 375b706dab Run karpenter in HA 2021-12-26 07:18:25 +01:00
Ole Markus With 85d347b8ee LBC has to run on the control plane, so set replicas accordingly 2021-12-25 19:54:35 +01:00
Kubernetes Prow Robot 6ba44ea236
Merge pull request #12975 from olemarkus/karpenter-only 
Add a CLI flag for creating one karpenter-managed IG for worker nodes instead of ASG-managed ones
 2021-12-24 01:40:15 -08:00
Ole Markus With 8f276cf944 Make it possible to create clusters with only karpenter-managed worker nodes 
Apply suggestions from code review

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2021-12-24 09:12:59 +01:00
Ole Markus With 0ead405b30 Set karpenter dns policy to default, lower requests and remove cpu limits 2021-12-24 09:12:58 +01:00
Ole Markus With 468280d3f2 Improve HA for various addons 2021-12-24 08:53:27 +01:00
Kubernetes Prow Robot c8cf827c17
Merge pull request #13010 from olemarkus/remove-legacy-storage-sa 
Do not install ClusterRole and binding used by in-tree volume provider if CSI is used
 2021-12-20 17:38:45 -08:00
Ole Markus With 397b22b31a Do not install ClusterRole and binding used by in-tree volume provider if CSI is used 2021-12-20 19:00:16 +01:00
Ole Markus With 694036719d Remove superflous quote 2021-12-20 15:04:52 +01:00
Kubernetes Prow Robot 219cadb2ab
Merge pull request #13002 from olemarkus/karpenter-rbn 
Bump karpenter to 0.5.3 and RBN support
 2021-12-20 02:09:25 -08:00
Ole Markus With 89f0c85e90 Use spread constraints rather than affinity to spread pods (templates) 2021-12-20 09:33:20 +01:00
Ole Markus With b2104ab274 Bump karpenter to 0.5.3 and RBN support 2021-12-19 21:53:07 +01:00
Ole Markus With 911e541360 Quote values and remove limits in karpenter provisioners 2021-12-15 20:51:55 +01:00
Kubernetes Prow Robot 424452a855
Merge pull request #12906 from olemarkus/karpenter 
Support Karpenter
 2021-12-14 13:58:50 -08:00
Ole Markus With 9529073f3a Add KubernetesCluster as selector as well to avoid trying to schedule outside the cluster 2021-12-14 12:05:21 +01:00
Ole Markus With eef4652c34 Quote 1 in label selector 2021-12-14 12:02:24 +01:00
Ole Markus With 7cbad719da Hubble relay should not tolerate anything 2021-12-14 11:56:05 +01:00
Ole Markus With 0a6e329477 Use internal-elb as karpenter subnet selector 2021-12-13 21:11:56 +01:00
Ole Markus With d987d4ac1a Rename SupportedArchitecture to architectureOfAMI 2021-12-13 09:14:24 +01:00
Ole Markus With b785965c50 Rename InstanceManager to Manager 2021-12-13 09:14:24 +01:00
Ciprian Hacman de8f73e83e Update Canal to v3.21.2 2021-12-13 08:09:32 +02:00
Ciprian Hacman 86ca968dd0 Update Calico to v3.21.2 2021-12-13 08:09:19 +02:00
Ole Markus With d4ec7cc7e0 Make kops get instances work with karpenter 2021-12-12 19:33:41 +01:00
Ole Markus With 794cb72112 Karpenter addon 
Constrain the instance types to what is supported by the AMI

Add taints and label to karpenter provisioner

Add instance types to karpenter provisioner
 2021-12-12 19:33:41 +01:00
Ole Markus With 57fd343e1d Make service topology for cilium configurable 2021-12-12 07:54:21 +01:00
John Gardiner Myers c5e1dea184 Remove code for no-longer-supported k8s version 2021-12-11 16:30:51 -08:00
Ciprian Hacman f5f35ab755
Release 1.24.0-alpha.1 (#12928) 2021-12-11 00:01:57 -08:00
Ciprian Hacman 473018f64f
Release 1.23.0-beta.1 (#12924) 2021-12-10 22:31:58 -08:00
Ciprian Hacman c57d8ac6d1 Update aws-load-balancer-controller to v2.3.1 2021-12-10 10:02:08 +02:00
Kubernetes Prow Robot cfa4629ce0
Merge pull request #12915 from heybronson/dns-pdb 
Set DNS PDB to a maxUnavailable percentage
 2021-12-09 12:51:04 -08:00
Bronson Mirafuentes ed7d287052 set dns pdb to 50% maxUnavailable 2021-12-09 08:57:33 -08:00
Ciprian Hacman c9aa6a8633 Fix error applying AWS CCM leader migration 2021-12-07 19:07:14 +02:00
Kubernetes Prow Robot 7987714cdb
Merge pull request #12893 from johngmyers/fix-external-dns 
Fix external-dns service name
 2021-12-07 04:50:00 -08:00
John Gardiner Myers fe324c84b5 Upgrade node-cache to 1.21.3 2021-12-06 21:10:04 -08:00
John Gardiner Myers 0b8e07333e Fix external-dns service name 2021-12-04 20:54:58 -08:00
Kubernetes Prow Robot 7f59cd8086
Merge pull request #12874 from olemarkus/snapshot-certificate 
Use v1 certificate for snapshot-validation-service
 2021-12-02 04:11:33 -08:00
Ole Markus With 60fb19fc44 Use v1 certificate for snapshot-validation-service 2021-12-02 10:17:57 +01:00
John Gardiner Myers 8a5cbc0ff7 Rename imageName to image in v1alpha3 2021-12-01 22:26:57 -08:00
Kubernetes Prow Robot 64042a8a84
Merge pull request #12812 from rifelpet/gcp-csi 
Add GCP PD CSI driver addon
 2021-12-01 20:19:33 -08:00
liranp ceef422267
feat(spot/addon): bump spotinst/ocean-controller to v1.0.80 2021-12-02 01:07:58 +02:00
justinsb 6b9c03732c GCE: fix for metadata-proxy on cilium 
Cilium doesn't seem to react well to a redirect to 127.0.0.1, but if
we redirect to an IP then it works well.  This should also work
with other CNI providers.

Similar to what upstream kubernetes does, we bind to 169.254.169.252.

Upstream: 108c284a33/cluster/gce/gci/configure-helper.sh (L181-L184)
 2021-12-01 10:51:23 -05:00
Peter Rifel c7aa7d94d8
Fix PDC CSI driver image 2021-11-30 22:20:12 -06:00
Peter Rifel 3329caeb22
Fix GCE PD CSI driver pod manifest 2021-11-30 22:20:12 -06:00
Peter Rifel 1611c45d34
Add default CSI storage class and missing tags and namespaces 2021-11-30 22:20:12 -06:00
Peter Rifel 3a943b2b95
Add GCP PD CSI driver manifest 2021-11-30 22:15:46 -06:00
John Gardiner Myers a502a37990 Support NodeLocalDNS on IPv6 clusters 2021-11-28 15:55:16 -08:00
Ciprian Hacman 98041a7b4b Use NAT64 instead of dual-stack for AWS EBS CSI driver 2021-11-28 05:07:01 +02:00
Kubernetes Prow Robot 3245c6d817
Merge pull request #12835 from johngmyers/disable-2 
Invert sense of negative-option settings in v1alpha3
 2021-11-27 00:38:41 -08:00
John Gardiner Myers c6ebce5ece Enable DNS64 in CoreDNS if IPv6 enabled 2021-11-26 16:25:03 -08:00
John Gardiner Myers 5a60d34e14 Change sense of Cilium IPTablesRulesNoinstall in v1alpha3 2021-11-25 18:45:13 -08:00
John Gardiner Myers 837176340d Change sense of Cilium DisableMasquerade in v1alpha3 2021-11-25 18:45:13 -08:00
John Gardiner Myers 8bbc0e00e5 Change DisableFlannelForwardRules to match upstream naming in v1alpha3 2021-11-25 18:45:13 -08:00
Kubernetes Prow Robot 0e56286aa3
Merge pull request #12816 from johngmyers/rename-fields-2 
Rename fields to fit acronym conventions
 2021-11-24 23:14:33 -08:00
Kubernetes Prow Robot 0012928f23
Merge pull request #12830 from johngmyers/leader-migration 
Migrate to AWS CCM in k8s 1.24
 2021-11-24 20:28:33 -08:00
John Gardiner Myers 9d8cade672 Migrate to AWS CCM in k8s 1.24 2021-11-24 17:46:00 -08:00
Kubernetes Prow Robot 64d03703b9
Merge pull request #12709 from hakman/canal-3.21.0 
Update Canal to v3.21.1
 2021-11-24 12:51:32 -08:00
Ciprian Hacman 1d9a6127b3 Update Canal to v3.21.1 2021-11-24 07:49:58 +02:00
Ciprian Hacman 5cad1999fc Update Calico to v3.21.1 2021-11-24 07:44:23 +02:00
Kubernetes Prow Robot d5edfc3479
Merge pull request #12822 from zhengtianbao/npd 
Add nodeProblemDetector daemonset serviceAccountName
 2021-11-23 18:50:20 -08:00
zhengtianbao 73c575c26b Add nodeProblemDetector daemonset serviceAccountName 2021-11-24 08:47:18 +08:00
Gabriel Martinez 1b815f4d5d
Add missing namespace for cluster-autoscaler pdb template 
Signed-off-by: Gabriel Martinez <gabrielmartinez@sisti.pt>
 2021-11-23 10:16:58 +00:00
Gabriel Martinez 881bc5ca44
Add missing namespace for aws-ebs-csi-driver pdb template 
Signed-off-by: Gabriel Martinez <gabrielmartinez@sisti.pt>
 2021-11-23 10:16:58 +00:00
Kubernetes Prow Robot 6018f9b2fd
Merge pull request #12819 from zhengtianbao/fix#12817 
Add NodeProblemDetector clusterRoleBinding
 2021-11-22 22:50:16 -08:00
zhengtianbao 40ba108677 Add NodeProblemDetector clusterRoleBinding 2021-11-23 13:48:12 +08:00
Alex Simenduev 71dc0efc89 Update Flannel CNI to v0.15.1 2021-11-23 00:19:05 +02:00
John Gardiner Myers b9ac79ec6e Rename fields in v1alpha3 networking API to fit acronym convention 2021-11-22 08:07:55 -08:00
John Gardiner Myers f65ba3d9cd Rename fields in v1alpha3 componentconfig API to fit acronym convention 2021-11-21 16:16:32 -08:00
Kubernetes Prow Robot 034af62889
Merge pull request #12792 from justinsb/gossip_coredns_hosts_via_services 
gossip: support resolution of k8s.local names from pods (via services)
 2021-11-20 15:00:59 -08:00
justinsb 6133250046 gossip: support resolution of k8s.local names from pods 
We add the hosts plugin to CoreDNS, and we populate a ConfigMap from
kops-controller (when in gossip mode).

This enables resolution of the internal apiserver DNS name from Pods,
even when gossip mode (k8s.local) is in use.  This should fix the
failing e2e tests which are assuming that the name in the JWT token is
resolvable from inside the cluster.

This is also a possible step towards a simpler gossip mode, now that
we have a central controller.
 2021-11-19 11:02:15 -05:00
justinsb 0c696d41d3 Create supporting services in kops-controller for gossip-mode 
The intent is that we can then expose these via CoreDNS, so that
internal name resolution will work.
 2021-11-19 11:02:10 -05:00
Kubernetes Prow Robot fd2aa277bb
Merge pull request #12790 from justinsb/aws-authentication-separator 
Fix AWS authentication separator to support multiple objects
 2021-11-19 07:10:51 -08:00
justinsb 27c223af25 Fix AWS authentication separator to support multiple objects 
Otherwise the objects overwrite each other, because YAML.
 2021-11-19 09:34:22 -05:00