kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,739 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1053 Commits

Author SHA1 Message Date
Ole Markus With dac7002b39 Fix core manifest 2021-09-04 12:49:59 +02:00
Kubernetes Prow Robot c98d0b54e4
Merge pull request #12265 from olemarkus/cilium-masq-ipv6 
Disable masquerade means disable masquerade if ipv6 too
 2021-09-04 01:27:19 -07:00
Kubernetes Prow Robot 0463fa7ffd
Merge pull request #12258 from olemarkus/ipv6-cloudconfig 
Set NodeIPFamilies in ipv6 mode
 2021-09-04 00:19:19 -07:00
Ole Markus With 1c53e37491 Disable masquerade means disable masquerade if ipv6 too 2021-09-04 08:54:16 +02:00
Ole Markus With bf96c42a60 Use node internal IP for metrics-server 2021-09-03 13:03:35 +02:00
Ole Markus With ec2dcfca48 Set NodeIPFamilies in ipv6 mode 2021-09-03 08:31:09 +02:00
Jesse Haka 0d9ebd5b0e use k8s.gcr.io 2021-09-02 12:08:54 +03:00
Jesse Haka 744d27189f update openstack CSI 2021-09-02 11:37:47 +03:00
Kubernetes Prow Robot c70ced2f66
Merge pull request #12219 from dntosas/nodelocaldns-bump-version 
[addons/node-local-dns] Bump version and make image field configurable
 2021-09-01 04:54:59 -07:00
Ole Markus With e2fd94d104 Make json logging on deployment and enable k8s events 2021-08-31 22:59:30 +02:00
Ole Markus With b52008d9b6 Add instance state change notification to nth 2021-08-31 22:54:21 +02:00
Kubernetes Prow Robot fc91d0d459
Merge pull request #12229 from olemarkus/bump-cm-2212 
Bump cert-manager to 1.5.3
 2021-08-31 07:23:37 -07:00
Ole Markus With 4bde644786 Bump cert-manager to 1.5.3 2021-08-31 13:12:58 +02:00
dntosas f558f2441a
[addons/nodelocaldns] Bump image to latest stable v1.20.0 
As per
 3b17e06879,
 node-local-dns addon is now builded with latest coreDNS base v1.8 and
 that brings great consistency between cache and upstream servers in a
 manner of configuration, metrics name convention, etc.

 So in this commit, we bump node-local-dns image to latest v1.20.0 which
 is build upon latest coreDNS and also add support for overriding this
 field.

Signed-off-by: dntosas <ntosas@gmail.com>
 2021-08-31 14:07:19 +03:00
John Gardiner Myers 62c4ce4d93 Move bootstrap RBAC from protokube to core bootstrap addon 2021-08-29 12:36:21 -07:00
Kubernetes Prow Robot bf559f042d
Merge pull request #12198 from dntosas/metrics-server-bump-minor-version 
[addons/metrics-server] Bump minor version
 2021-08-28 02:38:52 -07:00
John Gardiner Myers 1ea4168cab Release 1.23.0-alpha.1 2021-08-27 21:12:45 -07:00
Ole Markus With 67b1ace14f Validate external-dns spec 2021-08-27 06:32:25 +02:00
Ole Markus With 38f805c5ef Make external-dns a drop-in for dns-controller 
Support TXT records
 2021-08-27 06:24:47 +02:00
dntosas 075fd29f20
[addons/metrics-server] Bump minor version 
Updating image and manifest to latest stable version.

Signed-off-by: dntosas <ntosas@gmail.com>
 2021-08-24 11:00:29 +03:00
Kubernetes Prow Robot 022452a61b
Merge pull request #12189 from olemarkus/bump-cm-2211 
Bump cert-manager to 1.5.2
 2021-08-21 13:49:59 -07:00
Ole Markus With 11ffa653cb Bump cert-manager to 1.5.2 2021-08-21 21:12:23 +02:00
Amit Prasad 48fa73f3bb Add option in Cluster Autoscaler AddOn for AWS EC2 Static instance list 2021-08-21 22:44:31 +05:30
Kubernetes Prow Robot 181f278218
Merge pull request #12176 from olemarkus/bump-snapshot-controller-22 
Bump snapshot-controller
 2021-08-18 14:19:45 -07:00
Ole Markus With 7f4066a909 Bump snapshot-controller 2021-08-18 20:39:16 +02:00
Ole Markus With 2288900ae6 Bump cert-manager to 1.5.1 2021-08-18 20:34:05 +02:00
dntosas 0e8d189aee [cilium] Add support for encryption via WireGuard 
In this commit, we enable users to choose WireGuard as their prefered
encryption type, leveraging this new feature from Cilium.

Ref: https://cilium.io/blog/2021/05/20/cilium-110#wireguard

Signed-off-by: dntosas <ntosas@gmail.com>
 2021-08-16 14:08:59 +02:00
Ole Markus With caf46fef6a Bump AWS CSI Driver to 1.2.0 2021-08-13 11:14:05 +02:00
Kubernetes Prow Robot b1e6064501
Merge pull request #12141 from olemarkus/cilium-bump-211 
Bump cilium to 1.10.3
 2021-08-12 13:11:50 -07:00
Ole Markus With 133eb1f7ba Bump cilium to 1.10.3 2021-08-12 21:12:25 +02:00
Ole Markus With 57bd06b281 Bump Cert Manager for 1.22 2021-08-12 08:36:22 +02:00
Kubernetes Prow Robot e7b52981ab
Merge pull request #12119 from rifelpet/dns-controller-api 
Update dns-controller to use networking.k8s.io/v1 Ingress API
 2021-08-08 15:11:30 -07:00
Peter Rifel b193d2d583
Update addon manifests referencing RBAC v1beta1 2021-08-08 16:12:39 -04:00
Peter Rifel 7c2112b32d
Update dns-controller to use networking.k8s.io/v1 for watching Ingresses 2021-08-08 15:54:27 -04:00
Kubernetes Prow Robot b858297fa4
Merge pull request #12114 from olemarkus/metrics-server-secure-not-insecure 
Make metrics-server insecure if insecure is true
 2021-08-07 15:13:36 -07:00
Ole Markus With 0439bb0d76 Remove UseServiceAccountIAM feature flag and rename feature to UseServiceAccountExternalPermissions 2021-08-07 21:20:03 +02:00
Ole Markus With 612be4b1fc Make metrics-server insecure if insecure is true 
Also add tests for each variation to make sure this sticks
 2021-08-07 20:44:50 +02:00
Ole Markus With 1839b1ac47 Revert most of #12023 and keep awslbc on CP nodes 2021-08-05 19:30:27 +02:00
Kubernetes Prow Robot 283080bc30
Merge pull request #12083 from CheyiLin/nth 
Add nth rebalance recommendation configs
 2021-08-02 21:40:48 -07:00
Cheyi Lin 408bb7dfbe Add nth rebalance recommendation configs 2021-08-02 16:20:17 +08:00
Ciprian Hacman 966d2d6308 Update Calico to v3.20.0 2021-08-02 08:51:37 +03:00
Kubernetes Prow Robot 5bd6a49b26
Merge pull request #12062 from hakman/coredns-1.8.4 
Update core-dns to v1.8.4
 2021-07-29 11:14:57 -07:00
Ciprian Hacman fc3a103baf Update core-dns to v1.8.4 2021-07-29 08:23:35 +03:00
Moshe Shitrit f0f15df565 update aws-cni version to 1.9.0 2021-07-29 00:05:20 -04:00
Kubernetes Prow Robot 14d58a4e87
Merge pull request #12024 from olemarkus/irsa-nth 
Add irsa support for node termination handler
 2021-07-19 10:06:52 -07:00
Ole Markus With d31c682506 Set vpc-id on aws lbc 2021-07-19 15:14:15 +02:00
Ole Markus With 28bd45a8fa Add irsa support for nth 2021-07-19 15:12:35 +02:00
Ciprian Hacman 4d7ebd343c
Release 1.22.0-alpha.2 (#12012) 2021-07-17 21:42:51 -07:00
Ole Markus With a13cdb38f3 Add region to aws lbc 2021-07-14 08:23:53 +02:00
liranp 786244aa9b
feat(spot/addon): bump ocean-controller to v1.0.77 2021-07-12 12:45:15 +03:00
Ole Markus With 97a41c66f4 Enable k8s event handover when kvstore is used 2021-07-09 15:46:43 +02:00
Kubernetes Prow Robot 7f93801afd
Merge pull request #11939 from olemarkus/ccm-issues 
Fix various CCM issues
 2021-07-06 10:12:19 -07:00
Ole Markus With 2d56558efe Run cert-manager cainjector on CP nodes as well 2021-07-06 16:05:41 +02:00
Ole Markus With af0aefd2e7 Use localhost as API address for CCM 2021-07-06 16:01:20 +02:00
Ole Markus With bedfb409ca Don't always pull the CCM image 2021-07-06 15:50:30 +02:00
Ole Markus With bb367f22ea Add aws- prefix to CCM SA 2021-07-06 15:46:59 +02:00
Ole Markus With 561161291f Schedule certmanager webhook on control plane 2021-07-06 08:45:12 +02:00
liranp 289a75b5e7
feat(spot/addon): bump ocean-controller to v1.0.76 2021-06-28 14:29:13 +03:00
Kubernetes Prow Robot 89ad2bc453
Merge pull request #11810 from hakman/ipv6_disable_calico_awssrcdstcheck 
Enable cross-subnet mode with Calico by default
 2021-06-25 01:08:45 -07:00
John Gardiner Myers f50a615f8c Remove obsolete Spotinst manifest 2021-06-24 21:21:55 -07:00
Ciprian Hacman a12b3145ee Enable cross-subnet mode with Calico by default 2021-06-25 07:13:20 +03:00
Moshe Shitrit 6dee0ad09e Comment-out hardcoded default values and add the overriden ones as template functions for ease of customization 
Update auto-generated files
 2021-06-22 12:26:28 +03:00
Ciprian Hacman d8b03da8ae Set priority class for AWS CCM addon 2021-06-22 06:32:53 +03:00
Ole Markus With 14fb35d0d0 Bump EBS Driver to 1.1.0 2021-06-21 08:56:11 +02:00
Moshe Shitrit 9e6771118f Update version to 1.8.0 2021-06-18 18:42:03 +03:00
Ole Markus With 33a7de60a7 Enable IRSA for EBS CSI Driver 2021-06-18 08:05:59 +02:00
Kubernetes Prow Robot 7ec956dd00
Merge pull request #11748 from olemarkus/irsa-cas 
Enable ability to use IRSA for cluster autoscaler
 2021-06-17 21:00:05 -07:00
Kubernetes Prow Robot 559b57ea4c
Merge pull request #11381 from dntosas/addons-add-npd 
[addons] Introduce NodeProblemDetector
 2021-06-17 00:58:19 -07:00
dntosas 20124d3ba9
[addons] Introduce NodeProblemDetector 
Node Problem Detector aims to make various node problems visible to
the upstream layers in the cluster management stack. It is a daemon
that runs on each node, detects node problems and reports them to apiserver
so to avoid scheduling new pods on bad nodes and also easily identify
which are the problems on underlying nodes.

Project Home: https://github.com/kubernetes/node-problem-detector

Signed-off-by: dntosas <ntosas@gmail.com>
 2021-06-16 21:00:22 +03:00
Ole Markus With 6e8e027aff Enable IRSA for Cluster Autoscaler 2021-06-16 18:03:11 +02:00
Kubernetes Prow Robot 84a730c9d6
Merge pull request #11678 from dntosas/safe-cilium 
[cni/cilium] Add support for additional config options
 2021-06-16 02:47:58 -07:00
dntosas 7bf65ff7ef
[cni/cilium] Add support for additional config options 
In this commit, we enable users define their setup with following
additional fields:

- DisableEndpointCRD
- EnableEndpointHealthChecking
- IdentityAllocationMode
- IdentityChangeGracePeriod
- BPFLBAlgorithm
- BPFLBMaglevTableSize
- BPFNATGlobalMax
- BPFNeighGlobalMax
- BPFPolicyMapMax
- EnableBPFMasquerade
- EnableL7Proxy

Added also validation tests to prevent conflicting value combinations to
reach actual cluster state.

Signed-off-by: dntosas <ntosas@gmail.com>
Co-authored-by: hwoarang <markos@chandras.me>
Signed-off-by: dntosas <ntosas@gmail.com>
 2021-06-16 09:35:42 +03:00
Ole Markus With 0798553565 fix enable default SC when EBS driver is not installed 2021-06-15 22:08:59 +02:00
John Gardiner Myers 07ee0c2206 Simplify Calico IPv6 configuration 2021-06-14 08:06:10 -07:00
Kubernetes Prow Robot 0347d79a14
Merge pull request #11754 from johngmyers/ipv6-cilium 
Enable IPv6 support for Cilium
 2021-06-14 07:27:04 -07:00
John Gardiner Myers 3cf8234d01 Cilium: disable masquerade by default when in ENI IPAM mode 2021-06-13 21:36:56 -07:00
John Gardiner Myers c0b54d980d Enable IPv6 support for Cilium 2021-06-13 20:47:44 -07:00
ederst 7f787decd8 Make forwardToKubeDNS work in the NodeLocal DNSCache template 
This fixes the rendering of the Corefile of the NodeLocal DNSCache
template when setting forwardToKubeDNS to false (or not setting it).

Previously, due to not dereferencing the bool pointer, the Corefile was
always rendered with the true clause, due to checking the address
instead of the actual value of the variable.

With this fix, the templating mechanism will actually respect the value
of forwardToKubeDNS and render it accordingly.
 2021-06-11 21:58:07 +02:00
Ole Markus With c162013a3c Use quay images for cilium 2021-06-08 23:01:08 +02:00
Dmytro Oboznyi feed3b26ae
Add proxy envs to calico to make possible usage of AWS source destination check 
Signed-off-by: Dmytro Oboznyi <dmytro.oboznyi@syncier.com>
 2021-06-07 16:56:35 +03:00
Kubernetes Prow Robot 16dca9e844
Merge pull request #11124 from hakman/kube-router-1.2.0 
Update kube-router to v1.2.3
 2021-06-06 21:52:39 -07:00
Ciprian Hacman 91d681622c Update kube-router to v1.2.3 2021-06-07 05:25:00 +03:00
Kubernetes Prow Robot 673961cb0f
Merge pull request #11703 from olemarkus/lbc-use-v1-cert 
Use v1 certificate for LB controller
 2021-06-06 12:06:39 -07:00
Kubernetes Prow Robot 9984ba079c
Merge pull request #11701 from olemarkus/fix-ebs-csi-role-crb 
Fix the CSI EBS DS CRB.
 2021-06-06 11:08:38 -07:00
Ole Markus With 0e1a0538b3 Use v1 certificate 2021-06-06 19:28:19 +02:00
Ole Markus With 8f8d6deb17 Fix the CSI EBS DS CRB. 2021-06-06 19:23:22 +02:00
Kubernetes Prow Robot 7001de3486
Merge pull request #11688 from hakman/ipv6-calico 
Add options for configuring IPv4 and IPv6 support with Calico
 2021-06-05 16:06:38 -07:00
Ciprian Hacman 70f77a34d1 Add options for configuring IPv4 and IPv6 support with Calico 2021-06-04 17:05:40 +03:00
Peter Rifel 708a5db365
Consolidate CSI livenessprobe images for multi-arch support 
This manifest includes two liveness-probe containers but they use different images.
The k8s.gcr.io image is multi-arch but the quay.io image is not.
By only using the k8s.gcr.io one we should fix arm64 clusters now that EBS CSI is enabled by default.
 2021-05-31 14:19:00 -05:00
Ryan Dyer 65b750e732 add init image field 2021-05-25 17:57:49 +00:00
Kubernetes Prow Robot fcef4fc1bf
Merge pull request #11594 from hakman/calico-3.19.1 
Update Calico to v3.19.1
 2021-05-24 23:32:22 -07:00
Ciprian Hacman ca39686c29 Update Calico to v3.19.1 2021-05-25 07:34:50 +03:00
John Gardiner Myers 6ac345e23d Use the OnDelete updateStrategy for AWS VPC CNI DaemonSet 2021-05-24 19:55:19 -07:00
Kubernetes Prow Robot d906f83121
Merge pull request #11561 from olemarkus/actually-add-snapshot-controller 
Add snapshot-controller
 2021-05-22 02:03:37 -07:00
Ole Markus With 1868313497 Add snapshot-controller 2021-05-22 09:19:35 +02:00
Ciprian Hacman 93a09e5419 Update metrics-server to v0.4.4 2021-05-22 09:39:14 +03:00
Ciprian Hacman 2df8e56fc9 Allow using insecure TLS for metrics-server with Kubernetes 1.19+ 2021-05-22 09:38:31 +03:00
Ole Markus With 46e13c0009 Bump snapshot-controller version 
Update upup/models/cloudup/resources/addons/storage-aws.addons.k8s.io/v1.15.0.yaml.template

Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>

Update upup/models/cloudup/resources/addons/storage-aws.addons.k8s.io/v1.15.0.yaml.template

Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
 2021-05-21 15:40:40 +02:00
Kubernetes Prow Robot 8a6ec1416c
Merge pull request #11491 from olemarkus/cas-update-manifest 
Update CAS manifest
 2021-05-21 04:52:46 -07:00
Kubernetes Prow Robot 8e938ba5ee
Merge pull request #11500 from dntosas/coredns-bump-manifest 
Bump CoreDNS manifests to latest stable version 1.8.3
 2021-05-21 00:28:57 -07:00