kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,739 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1163 Commits

Author SHA1 Message Date
Kubernetes Prow Robot 5bfdefb43c
Merge pull request #12623 from johngmyers/cilium-ipv6-ipam 
Never masquerade IPv6 with Cilium
 2021-10-29 05:56:51 -07:00
Kubernetes Prow Robot 59a637e6de
Merge pull request #12538 from hierynomus/issue-12205 
Configure aws-iam-authenticator using identityMappings defined in cluster.yaml
 2021-10-29 03:10:51 -07:00
Jeroen van Erp 353be50f9b
Configure aws-iam-authenticator using identityMappings defined in cluster.yaml 
Signed-off-by: Jeroen van Erp <jeroen@hierynomus.com>
 2021-10-29 10:30:44 +02:00
Ole Markus With ac3c22b431 Use InternalIP as preferred kubelet address only in ivp6 mode 
As metrics-server rolls before the worker nodes, and worker nodes do not yet have IP SANs, upgrade breaks if InternalIP is used.
IPv6 never worked with hostnames, so there is no BC break there.
 2021-10-28 16:06:40 +02:00
John Gardiner Myers 7cb4fbe91e Never masquerade IPv6 with Cilium 2021-10-27 23:40:02 -07:00
John Gardiner Myers fdc128fda4 Remove vestigial Cilium ContainerRuntimeLabels code 2021-10-26 16:10:21 -07:00
Ciprian Hacman 35c3dfcbc5 Update handling of bool values for Canal 2021-10-24 12:25:42 +03:00
Ciprian Hacman 77772b6441 Move FELIX_LOGSEVERITYSCREEN to custom section for Canal 2021-10-24 12:25:42 +03:00
Ciprian Hacman 6b09f8de1e Update typha_service_name comment for Canal 2021-10-24 12:25:42 +03:00
Ciprian Hacman 79a65f116a Update calico/typha version for Canal 2021-10-24 12:25:42 +03:00
Ciprian Hacman e350227c11 Enable MTU auto-detection for Canal 2021-10-24 12:25:42 +03:00
Ciprian Hacman f2d5af57da Add calico-kube-controllers for Canal 2021-10-24 08:49:35 +03:00
Peter Rifel 04f401fbb9
Add canal 3.20 with k8s 1.22 support 2021-10-23 18:01:44 -06:00
Kubernetes Prow Robot f8ba8b11f7
Merge pull request #12437 from olemarkus/cas-delay 
Make it possible to set CAS max-node-provision-time
 2021-10-22 09:34:38 -07:00
Peter Rifel 477d930348
Upgrade AWS VPC CNI to 1.9.3 w/ k8s 1.22 support 2021-10-20 22:29:54 -07:00
Ole Markus With 11e68308d1 Disable CNP status updates by default 2021-10-20 14:01:48 +02:00
Ole Markus With 258fd4f9d9 Make it possible to set CAS max-node-provision-time 2021-10-20 13:53:37 +02:00
Kubernetes Prow Robot f8a8c015ef
Merge pull request #12524 from dntosas/cilium-bpf-lb-sock-hostns-only 
[cilium] Add support for bpf-lb-sock-hostns-only field
 2021-10-19 03:56:38 -07:00
dntosas 7296597a17
[cilium] Add support for bpf-lb-sock-hostns-only field 
This is a needed configuration option for users that want to combine
Cilium alongside with a ServiceMesh. Cilium by default will LB requests
at CNI layer meaning that the Sidecars of ServiceMesh Proxy are not able
to apply LB by themselves thus loosing the capability of applying their
features for traffic management.

Ref issue: https://github.com/istio/istio/issues/35531

Signed-off-by: dntosas <ntosas@gmail.com>
 2021-10-12 08:33:57 +03:00
liranp e84f35277f
feat(spot/addon): update clusterrole 2021-10-11 19:59:03 +03:00
Ciprian Hacman d215a12103 Update coredns to v1.8.5 2021-10-11 10:00:59 +03:00
Kubernetes Prow Robot a0099edb57
Merge pull request #12491 from hakman/calico-v3.20.2 
Update Calico to v3.20.2
 2021-10-05 20:42:33 -07:00
Ciprian Hacman 036c450093 Update Calico to v3.20.2 2021-10-06 05:39:26 +03:00
Kubernetes Prow Robot c0efde15ac
Merge pull request #12414 from sterchelen/feature/cilium_annotations 
Add Cilium agent pod annotations support to improve personalization
 2021-10-05 01:13:09 -07:00
Nicolas Sterchele 103a98d060 Add Cilium agent pod annotations support to improve personalization 
Annotations is pretty useful when you need third-party tool to add additional behavior
for a k8s resource.
Lots of auto-discovery tools are based on this annotations.
 2021-10-04 15:49:51 +02:00
liranp 2585dd6784
feat(spot/addon): bump spotinst/ocean-controller to v1.0.78 2021-10-04 10:28:04 +03:00
Moshe Shitrit dc08f5d996 Bump aws-cni to version 1.9.1 2021-10-01 00:47:43 -04:00
Kubernetes Prow Robot 2006cc1b77
Merge pull request #12425 from rifelpet/awsiam-v1 
Fix AWS IAM Authenticator support for k8s 1.22
 2021-09-29 12:23:21 -07:00
Kubernetes Prow Robot 8f91247b59
Merge pull request #12234 from hierynomus/coredns-affinity-tolerations 
Add ability to provide custom CoreDNS tolerations and affinity
 2021-09-28 15:10:34 -07:00
Jeroen van Erp c30ec8e310
Add ability to provide custom CoreDNS Tolerations and Affinity 
Signed-off-by: Jeroen van Erp <jeroen@hierynomus.com>
 2021-09-28 17:05:48 +02:00
Kubernetes Prow Robot b9d5e37e1f
Merge pull request #12431 from olemarkus/cilium-al2 
Mount cgroupv2 for cilium at a custom location
 2021-09-28 07:14:43 -07:00
Peter Rifel 1c25193dc7
Upgrade aws-iam-authenticator to 0.5.3 2021-09-28 08:29:39 -05:00
Peter Rifel bb46e73ade
aws-iam-authenticator - use v1 CRD API for k8s 1.22 support 2021-09-28 08:29:39 -05:00
Ole Markus With 39178703c8 Mount cgroupv2 for cilium at a custom location 2021-09-27 19:29:36 +02:00
Peter Rifel 42ecabae28
Allow aws-iam-authenticator to be scheduled onto dedicated apiserver nodes 2021-09-26 11:09:30 -05:00
Kubernetes Prow Robot ef22270b3f
Merge pull request #12394 from ReillyBrogan/reilly/ciliumBidirectionalMount 
Add bidirectional BPF mount for Cilium >= 1.9.10 or >= 1.10.4
 2021-09-25 09:42:21 -07:00
Anthony Hausman 5e814f465d
Add support to configure Cilium CNI chaining 
CNI chaining allows to use Cilium in combination with other CNI plugins.

With Cilium CNI chaining, the base network connectivity and IP address management is managed by the non-Cilium CNI plugin, but Cilium attaches eBPF programs to the network devices created by the non-Cilium plugin to provide L3/L4 network visibility, policy enforcement and other advanced features.

https://docs.cilium.io/en/v1.9/gettingstarted/cni-chaining/#cni-chaining

In our case, to be able to use the `HostPort` feature in our cluster, we need to enable the `portmap` plugin.
 2021-09-24 10:39:22 +02:00
Reilly Brogan bce435da1c Add bidirectional BPF mount for Cilium >= 1.9.10 or >= 1.10.4 
- Cilium versions 1.10.4 and 1.9.10 now auto-mount the bpf file-system automatically
- Also remove redundant capabilities (these are already automatically granted by virtue of this being a privileged container)
 2021-09-23 13:01:58 -05:00
Ole Markus With f06fcc5af2 Add specific taints to dns-controller. 
Also set kops-controller as cluster critical, not node critical
 2021-09-22 16:40:08 +02:00
Ciprian Hacman faa66c6597 Update Calico to v3.20.1 2021-09-19 09:31:39 +03:00
Ciprian Hacman fa853add24 Fix EC2 IPv6 endpoint for EBS CSI Driver controller 2021-09-18 18:34:13 +03:00
Ciprian Hacman bc6705c956 Use EC2 and Metadata IPv6 endpoints in IPv6 mode for EBS CSI Driver 2021-09-18 14:22:22 +03:00
Ole Markus With 1323ed9040 Add more tolerations to kops-controller and CCM . 
CCM and kops-controller taint each other out. This will make them
schedule, and schedule earlier.
 2021-09-16 21:09:45 +02:00
Kubernetes Prow Robot 1b431b4c9c
Merge pull request #11628 from olemarkus/gpu-runtime 
Pre-install nvidia container runtime + drivers on GPU instances
 2021-09-11 13:00:07 -07:00
Ole Markus With e44d0061f3 Bump snapshot-controller to 4.2.1 2021-09-11 08:37:54 +02:00
Peter Rifel 6a53285ffe
Move AWS CCM image logic into pkg/model and add 1.21 and 1.22 images 2021-09-08 20:56:39 -05:00
Antti Paloposki e1ddf87c55 Set explicit fsType to be able to mount volumes 2021-09-06 13:34:09 +03:00
Ole Markus With b144304240 Install nvidia device driver addon 2021-09-05 20:09:04 +02:00
Kubernetes Prow Robot 75bd1b1f5a
Merge pull request #12251 from zetaab/updatecsios 
update openstack CSI
 2021-09-05 02:47:20 -07:00
Kubernetes Prow Robot d06394def8
Merge pull request #12268 from olemarkus/fix-core 
Fix core manifest
 2021-09-05 00:57:19 -07:00