kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,154 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

149 Commits

Author SHA1 Message Date
AkiraFukushima 541dd7ee14 Fix cilium template by specifying boolean as a string for enable-metrics 2020-10-24 21:03:06 +09:00
Kubernetes Prow Robot d7591f4b7f
Merge pull request #10064 from hakman/flannel-0.13.0 
Update Flannel CNI to v0.13.0
 2020-10-23 14:23:02 -07:00
Ciprian Hacman 3e3aca8c0f Mount /dev/net for access to TUN device 2020-10-23 20:40:13 +03:00
Ciprian Hacman f9e426c307 Update Flannel CNI to v0.13.0 2020-10-23 20:40:13 +03:00
Ciprian Hacman a04cea6371 Add eBPF dataplane support for Calico CNI 2020-10-19 20:04:27 +03:00
Ole Markus With a7c7af4e97 Don't let node-local-dns add iptables rules 
Since we use the local IP we don't need the iptables rule for the cluster dns IP
 2020-10-16 12:46:16 +02:00
Ciprian Hacman 23e73a5b8e Release 1.19.0-alpha.5 2020-10-15 07:09:46 +03:00
Peter Rifel 4276afe238
Upgrade aws-iam-authenticator to 0.5.2 2020-10-13 11:57:13 -05:00
AkiraFukushima 7ad4815fc9 Enable wireguard in calico-node if it is enabled 2020-10-11 15:53:11 +09:00
Ciprian Hacman d125e1a026 Update Calico to v3.16.3 2020-10-10 04:05:19 +03:00
Kubernetes Prow Robot cc41bba0cf
Merge pull request #10022 from olemarkus/metrics-server 
Kubelet serving certificate and metrics server addon
 2020-10-09 03:09:07 -07:00
Ole Markus With fdaf5eb38d UseKopsControllerForNodeBootstrap instead of k8s versoin to determine secure tls 2020-10-09 10:18:02 +02:00
Ole Markus With e7070e334d Add metrics-server addon 2020-10-09 08:27:08 +02:00
monicagangwar a63ccd5163 [calico] awsSrcDstCheck to disable src/dest checks in AWS 
* replacing k8s-ec2-srcdst with calico's config awsSrcDstCheck and
  flag FELIX_AWSSRCDSTCHECK
* documentation and iam changes for calico awsSrcDstCheck
 2020-10-08 17:17:23 +05:30
liranp 15cc0fefae
feat(spot): upgrade the cluster controller (v1.0.67) 2020-10-01 18:24:31 +03:00
Kubernetes Prow Robot 13cbd84886
Merge pull request #9967 from olemarkus/cilium-hubble-pointer 
Cilium hubble pointer
 2020-09-30 12:36:54 -07:00
Kubernetes Prow Robot b9921511a4
Merge pull request #10002 from olemarkus/nth-bump 
Bump NTH to 1.8
 2020-09-30 02:17:25 -07:00
Ole Markus With 736bb5fd56 Bump NTH to 1.8 2020-09-30 10:37:49 +02:00
John Gardiner Myers 11bebf0b4b Add label to prevent kops-controller from running on old nodes 2020-09-27 21:44:50 -07:00
Ole Markus With bfa68fc8cb Fix CAS ASG configuration 2020-09-26 11:00:53 +02:00
Alexander Block 1bd219f790 Add missing permissions for cilium-operator 
These became required a few cilium versions ago.
 2020-09-22 16:19:07 +02:00
Kubernetes Prow Robot 6bf2e1e8c2
Merge pull request #9971 from zetaab/ifxbool 
OpenStack: allow to specify storageClass creation to false
 2020-09-18 05:18:45 -07:00
Jesse Haka 55e9ee6bf2 fix go template 2020-09-18 13:21:35 +03:00
Ole Markus With b9111c78e7 Make hubbleSpec into a pointer 2020-09-18 09:23:52 +02:00
Ole Markus With b9212f85ad Add addon for aws node termination handler 2020-09-17 21:09:28 +02:00
Adam Smith 2fb1a4ecd2 Support ChainInsertMode config option for Calico Networking 2020-09-16 10:38:45 +01:00
Ciprian Hacman 0eb626fcdd Release 1.19.0-alpha.4 2020-09-16 11:37:38 +03:00
Ole Markus With d3ae52ce4b Remove template function test to make bazel happy 
This test is sort of redundant when we have integration tests etc covering rendering of these templates
 2020-09-15 20:43:21 +02:00
Ole Markus With 926a0bc7c1 Block external CCM for k8s less than 1.13 2020-09-15 15:51:23 +02:00
Jesse Haka b465466993 recompile bindata 2020-09-15 15:03:38 +03:00
Kubernetes Prow Robot 58092b5666
Merge pull request #9925 from olemarkus/cas-fixes 
Add missing flags to cluster autoscaler template
 2020-09-13 00:58:57 -07:00
Ole Markus With 2b5950c24c Add missing flags to template 2020-09-12 08:24:29 +02:00
Andreas Strikos 93c44d867a Remove force_tcp flag for nodelocalcache dot zone 
Forcing all DNS communication go through TCP can lead to increased
latency and slower DNS responses since a lot of upstream DNS
servers are not optimized for TCP traffic.
An example is AWS's VPC DNS server that sending all the DNS traffic
through TCP cause it to increase the latencies for this requests.
The kubernetes version has already changed this configmap to skip
force_tcp flag for the . zone, so it makes sense to follow their
example.
Reference https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L100
 2020-09-11 09:58:27 +02:00
Kubernetes Prow Robot 8a07275bbf
Merge pull request #9901 from commixon/nodelocalcache-configure-resources 
Nodelocalcache configure resources
 2020-09-09 09:19:08 -07:00
Chris Loukas 65610dbcee Update NodeLocalDNSConfig with Mem/CPU requests 
Add NodeLocalDNS.CPURequest and NodeLocalDNS.MemoryRequest to
configure resource requests.

If not explicitly set, fall back to 25m and 5Mi
 2020-09-09 18:40:14 +03:00
Ciprian Hacman 0357d33ff6 Update Calico to v3.16.1 2020-09-09 06:37:27 +03:00
Kubernetes Prow Robot d8b7310c69
Merge pull request #9787 from olemarkus/cas 
Implement cluster autoscaler as bootstrap addon
 2020-09-04 22:37:40 -07:00
Ole Markus With a0e9fab104 Implement cluster autoscaler as bootstrap addon 
Use provider-agnostic node definition for cas instead of aws auto-discovery

Validate clusterAutoscalerSpec

Add spec documentation

Add cas docs

Make CRDs

Apply suggestions from code review

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>

Add enabled flag to cas config

Apply suggestions from code review

Co-authored-by: Guy Templeton <guyjtempleton@googlemail.com>

Add support for custom cas image

Support more k8s versions

Use full image names
 2020-09-03 09:52:13 +02:00
Ciprian Hacman 7a24b829aa Use calico/cni with fix for node name issue 2020-09-02 18:44:20 +03:00
Ciprian Hacman 1006f9082d Update Calico to v3.16.0 for k8s 1.16+ 2020-09-02 05:48:49 +03:00
Jesse Haka 92bc5689f3 regen bindata 2020-08-31 22:21:52 +03:00
liranp b10f07fefc
feat(spot): upgrade the controller (v1.0.64) 2020-08-31 19:59:15 +03:00
Justin SB 786423f617 Expose JWKS via a feature-flag 
When the PublicJWKS feature-flag is set, we expose the apiserver JWKS
document publicly (including enabling anonymous access).  This is a
stepping stone to a more hardened configuration where we copy the JWKS
document to S3/GCS/etc.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-08-30 10:15:11 -04:00
ozdanborne 6ae4337249 remove nodeAffinity from typha 2020-08-27 12:59:08 -04:00
MoShitrit db0111acfe Upgrade AWS VPC CNI to 1.7.1 2020-08-26 13:54:01 -04:00
Kubernetes Prow Robot b00f8049b6
Merge pull request #9808 from hakman/kope-to-k8s.gcr.io 
Pull images from k8s.gcr.io/kops instead of docker.io/kope
 2020-08-26 07:18:05 -07:00
Kubernetes Prow Robot 154335e758
Merge pull request #9818 from hakman/kube-router-1.0.1 
Update kube-router to v1.0.1
 2020-08-26 01:46:03 -07:00
Ciprian Hacman fd62ca9e42 Update kube-router to v1.0.1 2020-08-26 10:53:22 +03:00
Ciprian Hacman eb218cdc1a Update Calico to v3.15.2 for k8s 1.16+ 2020-08-26 10:01:22 +03:00
Ciprian Hacman a4ff90205a Pull images from k8s.gcr.io/kops instead of docker.io/kope 2020-08-25 08:04:36 +03:00