kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
18,247 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

5608 Commits

Author SHA1 Message Date
John Gardiner Myers 6eed8ff095 Refactor all normalization code into new Normalize() method 2022-10-30 23:59:22 -07:00
Kubernetes Prow Robot a105e74424
Merge pull request #14475 from johngmyers/normalize-sshkey 
Refactor to avoid looking up SSH keypairs twice
 2022-10-30 14:06:43 -07:00
John Gardiner Myers f568527c62 Refactor to avoid looking up SSH keypairs twice 2022-10-29 14:27:11 -07:00
Ciprian Hacman 1d53eba4b3 aws: Set the target group health check interval to 10s 2022-10-29 10:30:50 +03:00
John Gardiner Myers 63111f662a ipv6: NPE fixes for IPv6-only instances 2022-10-28 13:43:54 -07:00
John Gardiner Myers 183f217f08 ipv6: bastions need to go into dualstack subnets 2022-10-28 13:42:57 -07:00
Kubernetes Prow Robot 20b0595189
Merge pull request #14463 from HealthEngineAU/pod-identity-webhook-metrics-fix 
Fix Prometheus scraping for pod-identity-webhook
 2022-10-28 11:50:53 -07:00
Kubernetes Prow Robot 0aebcbc6d9
Merge pull request #14459 from pacoxu/master 
Stop applying the beta.kubernetes.io/os
 2022-10-28 10:46:31 -07:00
Kubernetes Prow Robot a3e521da92
Merge pull request #14466 from hakman/calico-3.24.3 
Update Calico and Canal to v3.24.3
 2022-10-28 09:50:32 -07:00
Ciprian Hacman 5aa9570c5c Update Canal to v3.24.3 for k8s 1.25+ 2022-10-28 07:39:30 +03:00
Ciprian Hacman 29cd8be78f Update Calico to v3.24.3 for k8s 1.25+ 2022-10-28 07:39:30 +03:00
Ciprian Hacman acd39b8085 Update Canal to v3.23.4 for k8s 1.22+ 2022-10-28 07:39:30 +03:00
Ciprian Hacman 48ebb20d83 Update Calico to v3.23.4 for k8s 1.22+ 2022-10-28 07:30:19 +03:00
Ciprian Hacman f9acd69eb4 Update Calico to v3.21.6 for k8s 1.16+ 2022-10-28 07:30:06 +03:00
Jim Barber 1253d15103 Fix Prometheus scraping for pod-identity-webhook 
The Service annotation for the pod-identity-webhook is asking Prometheus
to scrape its metrics from `https://` but this results in a HTTP 404 Not
Found response.
The pod-identity-webhook pods expose their metrics via HTTP on TCP port
9999 (the same port where the healthz checks go).
Therefore update the annotations to use `http://:9999` instead.
 2022-10-28 11:25:14 +08:00
Kubernetes Prow Robot 85036d24e6
Merge pull request #14461 from johngmyers/ipv6-fix 
ipv6: Tolerate multiple routes to the same NAT Gateway
 2022-10-27 14:48:30 -07:00
John Gardiner Myers 71246dbd9c Pick appropriate default image types for ARM images 2022-10-27 11:07:17 -07:00
John Gardiner Myers 49115bcc11 ipv6: Tolerate multiple routes to the same NAT Gateway 2022-10-27 11:07:17 -07:00
Paco Xu d632e39eae Stop applying the beta.kubernetes.io/os 2022-10-27 12:15:38 +08:00
Ciprian Hacman dfc8af28d5 Update containerd to v1.6.9 2022-10-27 05:13:51 +03:00
John Gardiner Myers d33551c20c Need to setup topology before control plane for IPv6 private topology 2022-10-25 22:27:05 -07:00
John Gardiner Myers 87dbab9062 Remove dead code 2022-10-22 22:05:18 -07:00
Kubernetes Prow Robot 4cf5418eb8
Merge pull request #14442 from olemarkus/webhook-pdb 
Fix pdb for identity webhook
 2022-10-21 11:27:52 -07:00
Ole Markus With 96a7c96c29 Fix pdb for identity webhook 
Also removing namespace from non-namespaced resource
 2022-10-21 19:03:41 +02:00
Ciprian Hacman dc98c74428 Move Gossip check to cluster struct 2022-10-21 09:48:07 +03:00
Bronson Mirafuentes b87fbc3853 add option to query AMIs IDs from SSM 2022-10-19 11:39:39 -07:00
Kubernetes Prow Robot 4546cafdcb
Merge pull request #14420 from olemarkus/roletaints-cloudup 
Move setting role taints to cloudup
 2022-10-18 05:29:19 -07:00
Ole Markus With cd378bff72 Move setting role taints to cloudup 2022-10-18 13:42:00 +02:00
Steven E. Harris 95f98896c7
promote-keypair: Block items without certificates 
Forbid the "kops promote keypair" command from promoting a key pair
item that lacks an associated X.509 certificate.

Along with that prohibition, refuse to store a key set in a VFS whose
primary key pair lacks a certificate. This allows us to continue
storing such key pairs, but we will never allow them to serve as the
primary key pair within the containing key set.
 2022-10-17 12:13:45 -04:00
Kubernetes Prow Robot 9e56f049b3
Merge pull request #14413 from TwoStone/patch-1 
Allow snapshot controller to create volumesnapshotcontent
 2022-10-17 02:49:08 -07:00
Kubernetes Prow Robot aebcae0568
Merge pull request #14419 from olemarkus/no-cluster-kubelet 
Remove usage of cluster kubelet config in nodeup
 2022-10-16 21:53:07 -07:00
Ole Markus With 950a69857d Remove usage of cluster kubelet config from nodeup 2022-10-16 21:04:20 +02:00
Jesse Haka c92f211862 bump Openstack ccm version 2022-10-16 21:02:24 +03:00
Niklas Walter 858bdbacfd
Allow snapshot controller to create volumesnapshotcontent 
For using dynamic provisioning of volumesnapshot the snapshot-controller has to be able to create volumesnapshotcontent objects at the cluster level.
When deploying the snapshot-controller as a kops addon the controller is not able to create volumesnapshotcontent object because it lacks the create permission.
This PR adds the create permission for the content objects, which should be the default according to https://github.com/kubernetes-csi/external-snapshotter/blob/v6.0.1/deploy/kubernetes/snapshot-controller/rbac-snapshot-controller.yaml
 2022-10-15 00:54:38 +02:00
Ciprian Hacman 658a567dda Deprecate AWS Classic Load Balancer support for API 2022-10-12 11:18:30 +03:00
Kubernetes Prow Robot 7e38fd3715
Merge pull request #14408 from noony/upgrade-karpenter 
karpenter: upgrade to version 0.16.3 and support kubeReserved configuration
 2022-10-11 10:33:03 -07:00
Thomas Colomb e40239b241 fix typo kubeReserved not systemReserved and remove ec2:DescribeImages iam right not needed we use launch templates 2022-10-11 15:43:17 +02:00
Thomas Colomb a34939b5c0 karpenter: upgrade to version 0.16.3 and support kubeReserved configuration 2022-10-11 15:05:08 +02:00
Jesse Haka 9aba3e62b0 update k8s openstack 2022-10-11 10:12:08 +03:00
Jesse Haka 9fc29eec36 incr 1.24 version 2022-10-10 11:21:22 +03:00
Jesse Haka d459b2432a update k8s cloudprovider openstack images 2022-10-10 09:17:22 +03:00
justinsb 1472ae51ca Fix typo in format string 
Fixing Warning that should have been a Warningf
 2022-10-08 09:24:28 -04:00
Ole Markus With 18808486da Remove fsGroupPolicy as it is immutable 2022-10-05 18:23:10 +02:00
Ole Markus With 8e040a4082 Bump EBS CSI driver to 1.12.0 2022-10-05 08:56:48 +02:00
Kubernetes Prow Robot 4f34d8df11
Merge pull request #14379 from noony/cluster-autoscaler-config 
cluster-autoscaler : Add scaleDownUnneededTime and scaleDownUnreadyTime
 2022-10-04 12:39:54 -07:00
Kubernetes Prow Robot 36ecb5db2f
Merge pull request #14378 from noony/karpenter-ondemand-fallback 
Karpenter : fallback on ondemand instance by default
 2022-10-04 11:39:55 -07:00
Thomas Colomb e5ddd5b0c3 cluster-autoscaler : Add scaleDownUnneededTime and scaleDownUnreadyTime 2022-10-04 18:57:21 +02:00
Thomas Colomb 4800f29d19 Karpenter : fallback on ondemand instance by default 2022-10-04 11:10:13 +02:00
Ciprian Hacman 102c2d4720 Fix logic for pre-creating DNS records 2022-10-04 09:41:01 +03:00
Ciprian Hacman 78a41e2d72 Refactor NodeUp GossipBuilder to EtcHostsBuilder 2022-10-02 15:02:05 +03:00