kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
14,508 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

156 Commits

Author SHA1 Message Date
DavidSie 013f8799fa Add CloudControllerConfigArgv template function, Expose CloudControllerConfigArgv function to templates, and testing it. 
Exposing CloudControllerConfigArgv function to templates, and testing it.
 2019-12-05 09:58:43 +01:00
Rodrigo Chacon 75c5f59e02 cloudup: Map sprig indent template function 
Map Sprig indent string template function into cloudup template
functions.
 2019-11-22 16:28:06 +08:00
Jesse Haka c320ec29c8 Set default image tag for OpenStack CCM 2019-10-27 20:05:30 +02:00
Justin SB b6862103bb
Change default port for memberlist from 3997 
We had a port collision on 3997; change the default memberlist ports
to avoid the collision (we haven't shipped a release with this in it).

Also create a go file so that we can use constants to keep track of
our port numbers, rather than magic values.
 2019-10-14 07:26:27 -04:00
Justin SB d3bad10aa9
Move kops-controller to use a yaml configuration file 
This is more in keeping with componentconfig, and lets us add more
options easily in future.
 2019-10-13 07:27:52 -07:00
Thomas Jackson 14a60a53c9 Enable primary=mesh secondary=memberlist by default 2019-10-10 13:21:00 -07:00
Thomas Jackson 6ea76be5a6 f 2019-10-10 13:09:22 -07:00
Thomas Jackson cfcb93e822 Misc fixes 2019-10-10 13:09:22 -07:00
Thomas Jackson f8c416d6ce Add configs for gossip dns 2019-10-10 13:09:22 -07:00
Justin SB 97f552778f
Add env vars, update tests 2019-09-25 12:48:13 -04:00
Justin SB 6cb341dfeb
Add kops-controller to default adddons 2019-09-25 12:04:37 -04:00
mikesplain 9e55b8230a Update copyright notices 
Also cleans some white spaces
 2019-09-09 14:47:51 -04:00
Justin SB 3e33ac7682
Change code from glog to klog 
We don't call klog.InitFlags yet, because that will cause a flag
redefinition error until we get everyone to stop using glog.  That
will happen when we update to k8s 1.13.
 2019-05-06 12:54:51 -04:00
Liran Polak 9f94c06e67 fix: rename spotinst's feature flag 2018-10-14 11:37:31 +03:00
Liran Polak 7654a923f1 feature: new integration: spotinst 2018-10-14 11:37:31 +03:00
k8s-ci-robot 56ccfac26d
Merge pull request #5317 from gambol99/node_registration 
Node Authorization Service
 2018-07-19 05:17:41 -07:00
Christian Kampka 3bf8a8fcd2 Add weave network encryption secret 2018-07-13 16:57:48 +02:00
Rohith 338a6d721c Changes 
- including the config only when there is something to include i.e. no nulls please
- fixing up the pod security policies for system:nodes groups, needs a mapping to permit manifests
 2018-07-06 20:14:35 +01:00
Rohith 6a2c542c02 - fixing up the spelling mistake; was probably added before the verify-misspelling PR 2018-06-11 13:44:00 +01:00
Rohith de977e627e Customize KubeDNS 
This PR adds the ability for users to customize the kubedns upstream nameservers and provider stubdomains, as per [here](https://kubernetes.io/docs/tasks/administer-cluster/dns-custom-nameservers/)
 2018-05-13 17:08:56 +01:00
Justin Santa Barbara ed797d1bcb Don't enable dns-controller prometheus metrics by default 2018-04-03 06:56:42 -07:00
Tomas Virgl a516e43f8f Fixes port collision between dns-controller metrics and gossip. 
Fixes #4877.
 2018-04-02 12:21:50 -07:00
andrewsykim b6bdc29d01 digitalocean: external cloud controller addon 2018-03-19 11:14:08 -04:00
Rohith c8e4a1caf8 Kubernetes Calico TLS 
The current implementation when Etcd TLS was added does not support using calico as the configuration and client certificates are not present. This PR updates the calico manifests and adds the distribution of the client certificate
 2018-02-14 23:41:45 +00:00
Justin Santa Barbara 6cedbbf456 Remove nodeup templating 
As it is now unused
 2017-12-15 01:20:34 -05:00
Rohith 260124d1d9 DNS Controller Watch Command line 
- adding a fix to the building of the argument, as the double quote cause an yaml parsing error
  error building tasks: error remapping manifest addons/dns-controller.addons.k8s.io/pre-k8s-1.6.yaml: error parsing yaml: error converting YAML to JSON: yaml: line 37: did not find expected key
 2017-11-08 15:00:39 +00:00
chrislovecnm 9754d2e4a4 getting rid of uneeded logging in ux 2017-09-23 18:54:02 -06:00
Rohith b64795673d DNS Controller Limitation 
The current implementation does not place any limitation on the dns annontation which the dns-controller can consume. In a multi-tenented environment was have to ensure certain safe guards are met, so users can't byt accident or intentionally alter our internal dns. Note; the current behaviour has not been changed;

- added the --watch-namespace option to the dns controller and WatchNamespace to the spec
- cleaned up area of the code where possible or related
- fixed an vetting issues that i came across on the journey
- renamed the dns-controller watcher files
 2017-09-22 11:37:00 +01:00
Justin Santa Barbara f157cccf85 baremetal: more wiring up 
This lets us get further on a kops update
 2017-09-17 15:17:57 -04:00
Justin Santa Barbara f463a8e30e Add docs for flannel-vxlan option 2017-09-12 20:53:00 -04:00
Justin Santa Barbara 15d6834113 Flannel: support choosing a backend type 
We support udp, which has to the default for backwards-compatibility,
but also new clusters will now use vxlan.
 2017-08-30 21:16:21 -04:00
Eric Hole 673cdf6b5f Fixes merge conflicts 2017-08-28 19:10:21 -07:00
Kubernetes Submit Queue 2d7fb51c2a Merge pull request #3025 from chrislovecnm/mapping-and-uploading-kubernetes-assets 
Automatic merge from submit-queue

inventory assets - mapping and uploading kubernetes containers
 2017-08-22 19:15:31 -07:00
andrewsykim 0411ba270e Create cluster requirements for DigitalOcean 2017-08-22 09:01:19 -04:00
chrislovecnm 2afdb5ab2e mapping-and-uploading-kube-assets 2017-08-21 15:16:56 -06:00
Derek VerLee ffa95b8112 Add support for cluster using http forward proxy 2017-08-07 14:30:42 -04:00
Hanfei Shen fc50984f09 support china region 2017-07-16 00:57:38 +08:00
Eric Hole 461bab656c go fmt 2017-07-13 18:09:39 -06:00
Eric Hole ff3ef87f51 Merge branch 'master' into flag-watch-ingress 2017-07-13 17:54:32 -06:00
Eric Hole 66bf3b6de5 Fixes imports && Updates for review 2017-07-13 16:20:47 -06:00
Justin Santa Barbara 1965a4be49 Updates to fix unit tests 2017-07-08 18:46:01 -04:00
Justin Santa Barbara 9a8fcd64e4 Simplify how we build addon manifests, support image redirection 2017-07-08 18:33:00 -04:00
Eric Hole 211b6e4d98 Fixes imports 2017-07-04 10:37:00 -07:00
Eric Hole 4468c6b2db Adds ExternalDNS config to cluster_spec with watchIngress flag 2017-07-04 10:34:50 -07:00
Justin Santa Barbara d2df318ecc Move CloudProvider to kops API 
This avoids a circular reference when breaking up the fi package
 2017-06-17 16:27:07 -04:00
Seth Pollack c0781e9869
add EnableExternalDNS feature flag 2017-05-28 19:20:06 -04:00
Justin Santa Barbara e8ac74593b Revert "Deploys dns-controller with default ingress setting (--watch-ingress=true)" 
This reverts commit 8c13903ab7.
 2017-05-13 00:27:26 -04:00
Eric Hole 8c13903ab7 Deploys dns-controller with default ingress setting (--watch-ingress=true) 2017-04-30 23:51:02 -04:00
Justin Santa Barbara eddd73549c Use LB IP address for private dns 2017-04-25 01:32:27 -04:00
Justin Santa Barbara c8b18be9dd Gossip backed DNS 2017-04-25 01:32:21 -04:00
Miao Luo b15014f9a3 Address review comments and add installing instructions. 2017-04-20 23:37:41 -07:00
Miao Luo c5519c0009 Add CoreDNS support into DNS controller addon image. 2017-04-20 23:33:21 -07:00
Miao Luo 6b010c4c5e Enable CoreDNS in nodeup/protokube (#6) 
* Enable CoreDNS in nodeup/protokube.

* Address comments.
 2017-04-20 23:33:21 -07:00
SandeepPissay 82f9f0668d vsphere initial support. 2017-04-20 23:31:21 -07:00
Justin Santa Barbara cb4641fea3 Code updates 2017-03-16 02:40:50 -04:00
Justin Santa Barbara 724bd95e0b Use Name tag to match ELBs 
Rather than using the LoadBalancerName to match, we match on the Name
tag.

Related to #2019
 2017-03-09 09:18:31 -05:00
Justin Santa Barbara 645f330dad Re-enable GCE support 
We move everything to the models.  We feature-flag it, because we
probably want to change the names etc, and we aren't going to be able to
offer smooth upgrades until that is done.
 2017-02-28 20:08:03 -05:00
Justin Santa Barbara 55b6d86454 Move more options to code 
User reports of kubelet flags not being passed; moved more to code.

Also found & fixed the likely root-cause issue: we have two copies of
the cluster spec and were not being precise about which one we wanted to
use at all times.
 2017-02-15 13:11:12 -05:00
Justin Santa Barbara ccb9350e39 Merge pull request #1268 from justinsb/api_exposure_in_topology 
Control how we expose the API
 2017-01-04 23:48:18 -05:00
Justin Santa Barbara 02f92979a6 Fixes per code review 2017-01-04 23:04:30 -05:00
Justin Santa Barbara 9314575953 Working on expressing how we expose services like the API 2017-01-04 23:04:30 -05:00
Justin Santa Barbara 22a963d5af Rework protokube dns so it shares code with dns-controller 2017-01-03 22:33:40 -05:00
Justin Santa Barbara aa3128ef96 Update to kubedns 1.5 (including autoscaler) 
Also harmonize the way we build addons
 2016-12-30 11:18:17 -05:00
Justin Santa Barbara fed68310fa Schema v1alpha2 
* Zones are now subnets
* Utility subnet is no longer part of Zone
* Bastion InstanceGroup type added instead
* Etcd clusters defined in terms of InstanceGroups, not zones
* AdminAccess split into SSHAccess & APIAccess
* Dropped unused Multizone flag
 2016-12-18 21:56:57 -05:00
Justin Santa Barbara c01c2af656 Mark ObjectMeta as a named field 
This will work around some apimachinery bugs
(https://github.com/kubernetes/client-go/issues/8)
 2016-12-14 22:26:57 -05:00
Justin Santa Barbara ade674e4b4 Remove unused import 
Fix mistake in rebase
 2016-12-05 02:32:34 -05:00
Justin Santa Barbara d1ea4f969a Make sure we set APIServerCount 
It looks like it got lost in a refactor.  Add a unit test, and move
initialization to code (and have the code self-check as well).

Also we can now have a fairly long code comment about the reasons why
this is such a mess...

Fix #371
 2016-12-05 02:30:53 -05:00
Justin Santa Barbara df9e1e44db Hotfix for segfaults 2016-12-04 12:44:22 -05:00
alok87 66d2e4791d IdleTimeout configurable from editcluster 2016-12-04 16:35:39 +05:30
alok87 ef73285659 Connection settings loadbalancer 2016-12-03 02:38:22 +05:30
alok87 fd51303622 Check for topology nil and bastionMachineType empty handle 2016-12-02 13:20:06 +05:30
alok87 d4eccb2688 Made bastion as part of TopologySpec 2016-12-01 09:56:45 +05:30
alok87 f0b80503c3 Configure LoadBalancer Attributes 2016-11-30 07:35:45 +05:30
alok87 edf22f3797 Bastion DNS as an option and not by default 2016-11-23 12:40:45 +05:30
alok87 6b17c27572 Bastion Improvements 2016-11-23 12:37:42 +05:30
alok87 6206bc711e Separate configuration for bastion 2016-11-23 12:35:10 +05:30
Justin Santa Barbara a3fa83ac34 Switch to use sets.String 2016-11-19 16:23:51 -05:00
Justin Santa Barbara 933506bdbb Apply gofmt 2016-11-13 21:06:55 -05:00
Kris Childress 52f0190080 Fixing conditional for our single node friends 2016-11-09 15:28:09 -08:00
Kris Childress 37f5bb7d57 Working networking commit! 
- Stick bastion in ASG
 - ELBs for API and Bastion
 2016-11-08 15:16:41 -08:00
Kris Childress 312621b0d0 Pushing up some last minute tweaks before asking for help and feedback from testing 2016-11-08 15:16:41 -08:00
Kris Childress e962f9c5fd Adding bastion support 2016-11-08 15:16:41 -08:00
Kris Childress a1ca6b7a5b More progress - getting out to Github so I can switch laptops... will be needing 8 cores today :D 2016-11-08 15:16:41 -08:00
Kris Childress 8fba14b85b Small refactor - getting ready to start YAML 2016-11-08 15:16:41 -08:00
Kris Childress 000e847af2 Topology Initial Commit 
- Refactor private networking -> topology
- Define new topology models (no changes yet)
- Docs
- Create cluster --topology and -t
- New functions for topology templating
 2016-11-08 15:16:41 -08:00
Vincent Ambo 4e7914d159 AdminCIDR() no longer potentially returns errors 
This template function now accurately reflects the type of the cluster
configuration and does not need to have an error return type anymore.
 2016-10-16 12:27:24 +02:00
Vincent Ambo c0dad70d1f Support multiple admin access CIDRs 
This modifies the templates to appropriately create resources for
different access CIDRs specified in the cluster configuration.

On AWS this leads to the creation of multiple security group rules which
will not currently be cleaned up if a CIDR is removed.

This issue is tracked in kubernetes/kops#145

Changes:
* change AdminCIDR() to return slice of configured CIDRs
* aws: change templates to create security group rule per CIDR
* gce: set 'sourceRanges' for firewall rule to configured CIDRs
 2016-10-16 12:27:24 +02:00
chrislovecnm 8fa2aac99f fixing more headers 2016-10-15 19:20:56 -06:00
Justin Santa Barbara 5ac44018d4 Move API to pkg/apis/kops 
This is a breaking change for people using the API (sorry), but is
hopefully a simple search and replace:

"k8s.io/kops/upup/pkg/api"
 -> api "k8s.io/kops/pkg/apis/kops"

"k8s.io/kops/upup/pkg/api/registry"
 -> "k8s.io/kops/pkg/apis/kops/registry"

This is the "correct" place for it in the k8s API infrastructure - we
are working towards a versioned API here.
 2016-10-11 08:52:54 -04:00
Justin Santa Barbara a529ffbb65 Configure dns-controller with ID of hosted zones 
Fix #584
 2016-10-06 13:12:27 -04:00
Justin Santa Barbara 655a61588e Switch all the final switches for release 1.4 
Also apply the 1.4 schema changes.
 2016-10-01 13:50:19 -04:00
Justin Santa Barbara 09b0175f73 Set apiserver-count flag 2016-09-29 23:40:39 -04:00
Justin Santa Barbara 5f8d68ec85 Refactor shared packages into util directory 2016-09-25 18:27:09 -04:00
Justin Santa Barbara 8839e67f0b Merge fixups 2016-09-24 11:46:34 -04:00
Yissachar Radcliffe 5217bd432d Add support for shared subnets 2016-09-16 12:17:44 -04:00
Justin Santa Barbara 6d139d06d1 Support labels on k8s nodes and AWS instances 
A lot of supporting work was needed, including improvements to the model
and model generation logic.
 2016-09-13 12:47:16 -04:00
Justin Santa Barbara b9c20a7c0d Fix logic around `or nillable true` in text template 
A false value is also treated as false, so the expression will always be
true
 2016-09-09 11:35:49 -04:00
Justin Santa Barbara 1b91f417e5 Build IAM policy in code 
Easier to get right than relying on string manipulation, but we're still
doing the same policies, with the improvements as done by @weargoogles.
 2016-08-27 21:18:23 -04:00
Justin Santa Barbara 8fb4215e17 Run CI versions of k8s 
CI versions are not pushed to gcr.io, so we need to preload the images
by downloading them and doing a docker load.
 2016-08-11 01:32:42 -04:00
Justin Santa Barbara 11d51b04a9 Adapt IAM policies when running in cn-north-1 
Fix #27
 2016-07-21 22:19:43 -04:00